基于Web的实验室管理信息系统的设计与实现
|
摘要
利用计算机和网络对高校实验室工作的相关信息和数据进行管理、开发出一套各院校通用的实验室管理信息系统被证明是提高实验室工作效率、促进实验室工作规范化管理的有效解决方案。本文说明了作者参与设计开发的基于网络的实验室管理信息系统(LabMIS2.0)的相关内容。该系统的主要功能是:科学有效地管理与高等院校各级实验室日常工作相关的各种信息,包括教职员工与学生、设备设施、实验教学过程记录、科研项目与服务项目信息、规章制度文件等各类信息。
本文首先概要介绍了采用B/S结构的LabMIS2.0开发的背景、开发目标与技术、整体性功能以及系统采用的架构,然后着重论述了该系统表示层设计的理论依据、设计内容与相应的实现方法、自定义界面、表示层的评估内容与方法,接着说明了该系统实现过程中涉及到的系统初始数据的导入与数据的导出、数据库的备份与恢复、信息内容的打印以及Web应用程序的安全问题和LabMIS2.0安全机制的部分实现等内容。
本文突显了在大部分Web应用程序设计中较为忽视的用户界面(UI)的设计考虑,系统地总结了Web应用程序表示层,特别是类似本系统这类事务性较强的Web应用程序表示层的设计理论、设计目标、实现过程与方法以及系统性的评估等内容,为解决开发当前Web应用程序操作繁琐、易用性不够等问题进行了积极的探索,以期为类似系统表示层的设计开发工作和开发出用户体验良好的应用程序提供一定的借鉴和启示。
本文还针对Web应用程序需要高度重视的安全性问题,通过对.NET平台下ASP.NET应用程序的安全机制和关键技术的分析研究,介绍了在LabMIS2.0系统中的若干实现,为完善类似系统的安全方面的设计开发工作提供可资参考借鉴的实例。
It has been proved to be effective solution of improving working efficiency and standardizing the management of laboratories that all-purpose laboratory management information system based on computers and networks to manage the information related to the work of laboratories. The paper describes design and development of Web-based Laboratory Information Management System (LabMIS2.0) that the author has participated in. The system is designed to scientifically and effectively manage all kinds of information related to the day-to-day work of the laboratories of universities in our country, including the information of teachers, administrative staff, students, equipments, records of experimental teaching, projects of scientific researches, external services, documents of rules and regulations, etc.
To start with, the paper outlines the background of development, the objectives and technology, integrated functions and architecture of LabMIS2.0. Next, it focused on the basic theory of design of the Presentation Layer of the system, the work of design and the corresponding methods, customizing user interface, the assessment of the contents and methods of the Presentation Layer. Finally, it shows the realization methods to import and export data, to backup and recover the database, to print and to secured the system.
The paper highlights the design of user interface of Web applications, which is overlooked in most of time. It systematically summed up the theory of the design, design goals, the realization process and systematic assessment of the entire design of Presentation Layer of Web applications, especially Web applications featured by business process like LabMIS2.0, in order to solve problems such as cumbersome operation and lack of usability at present and to inspire the design and development of applications for a good user experience.
Because of the importance of security for Web applications, the paper analyzed the security mechanisms and the key technologies of ASP.NET applications. It also introduced the realization process in the development of the system. The author wishes it will supply reference to design and develop secure Web applications like the system.
本文首先概要介绍了采用B/S结构的LabMIS2.0开发的背景、开发目标与技术、整体性功能以及系统采用的架构,然后着重论述了该系统表示层设计的理论依据、设计内容与相应的实现方法、自定义界面、表示层的评估内容与方法,接着说明了该系统实现过程中涉及到的系统初始数据的导入与数据的导出、数据库的备份与恢复、信息内容的打印以及Web应用程序的安全问题和LabMIS2.0安全机制的部分实现等内容。
本文突显了在大部分Web应用程序设计中较为忽视的用户界面(UI)的设计考虑,系统地总结了Web应用程序表示层,特别是类似本系统这类事务性较强的Web应用程序表示层的设计理论、设计目标、实现过程与方法以及系统性的评估等内容,为解决开发当前Web应用程序操作繁琐、易用性不够等问题进行了积极的探索,以期为类似系统表示层的设计开发工作和开发出用户体验良好的应用程序提供一定的借鉴和启示。
本文还针对Web应用程序需要高度重视的安全性问题,通过对.NET平台下ASP.NET应用程序的安全机制和关键技术的分析研究,介绍了在LabMIS2.0系统中的若干实现,为完善类似系统的安全方面的设计开发工作提供可资参考借鉴的实例。
It has been proved to be effective solution of improving working efficiency and standardizing the management of laboratories that all-purpose laboratory management information system based on computers and networks to manage the information related to the work of laboratories. The paper describes design and development of Web-based Laboratory Information Management System (LabMIS2.0) that the author has participated in. The system is designed to scientifically and effectively manage all kinds of information related to the day-to-day work of the laboratories of universities in our country, including the information of teachers, administrative staff, students, equipments, records of experimental teaching, projects of scientific researches, external services, documents of rules and regulations, etc.
To start with, the paper outlines the background of development, the objectives and technology, integrated functions and architecture of LabMIS2.0. Next, it focused on the basic theory of design of the Presentation Layer of the system, the work of design and the corresponding methods, customizing user interface, the assessment of the contents and methods of the Presentation Layer. Finally, it shows the realization methods to import and export data, to backup and recover the database, to print and to secured the system.
The paper highlights the design of user interface of Web applications, which is overlooked in most of time. It systematically summed up the theory of the design, design goals, the realization process and systematic assessment of the entire design of Presentation Layer of Web applications, especially Web applications featured by business process like LabMIS2.0, in order to solve problems such as cumbersome operation and lack of usability at present and to inspire the design and development of applications for a good user experience.
Because of the importance of security for Web applications, the paper analyzed the security mechanisms and the key technologies of ASP.NET applications. It also introduced the realization process in the development of the system. The author wishes it will supply reference to design and develop secure Web applications like the system.
引文
1 郝刚等.ASP-NET2.0开发指南[M].北京:人民邮电出版社,2006.286-287.
1 Betsy,Beier,Misha W.Vaughan.The bull's-eye:a framework for web application user interface design guidelines.http://www.uigarden.net/chinese/tong-xin-yuan-web-ying-yong-ruan-jian-jie-mian-she-ji-zahi-nan-de-gou-jia,2008-4-9.
1 Jennifer Preece,Yvonne Rogers,Helen Sharp.交互设计—超越人机交互[M].北京:电子工业出版社.2003.1.
1 上海艺土界面设计公司.界面视觉设计[EB/OL],http://www.etucn.com/fw3.html,2008-3-1.
1 Alan Cooper,Robert Reimann.软件观念革命—交互设计精髓[M].电子工业出版社,2005,262.
1 Windy.什么是交互设计(Interaction Design)[EB/OL],http://www.dedream.com/research/archives/2004/09/aeaeeeaec.html.2008-2-15.
1 郝刚等.ASP.NET2.0开发指南[M],人民邮电出版社,2006,130-141.
1 Jennifer Preece,Yvonne Rogers,Helen Sharp.交互设计—超越人机交互[M].北京:电子工业出版社.2003.1,242.
1 邵志东.ASP.NET网络打印[EB/OL]:微软公司MSDN中文网络广播ASP.NET开发实践系列,2007.
1 赵静.使用Rational AppScall保证Web应用的安全性,第1部分:Web安全与Ralional AppScan入门[EB/OL],http://www.ibm.com/developerworks/cn/rational/r-cn-appscan1/2008-3-2.
1 J.D.Meier,Alex Mackman,Michael Dunner,Srinath Vasireddy,Ray Escamilla,Anandha Murukan.Improving Web Application Security:Threats and Countermeasures[M],Microsoft Corporation,2003,6-10.
1 别传锋.管理信息系统中一种通用权限管理的设计与实现[J],长江大学学报(自然科学版),2008(1):53-57.
[1]教育管理信息化标准(第一部分:高校管理信息标准)[M].北京:人民邮电出版社,2002.
[2]教育管理信息系统互操作规范(V1.1)(草案),2004.
[3]张海藩.软件工程导论(第四版)[M].北京:清华大学出版社,2003.
[4]郝刚,袁永刚,严治国,何宇光等.ASP.NET2.0开发指南[M].北京:人民邮电出版社,2006.
[5](美)JenniferPreece,YvonneRogers,HelenSharp著,刘晓晖,张景等译.交互设计——超越人机交互[M].北京:电子工业出版社,2003.
[6](美)AlanCooper,RobertReimann著,詹剑峰,张知非等译.软件观念革命——交互设计精髓[M].北京:电子工业出版社,2005
[7]林锐,唐勇,石志强.Web软件用户界面设计指南[M].北京:电子工业出版社,2005.
[8]马军.精通ASP.NET2.0网络应用系统开发[M].北京:人民邮电出版社,2006.
[9](美)JeffreyZeldman著,傅捷,王宗义,祝军译.网站重构:应用Web标准进行设计[M].北京:电子工业出版社,2004.
[10](美)MarkM.Burnett著,良忠译.拒绝黑客——ASP.NETWeb应用程序安全性剖析[M].北京:电子工业出版社,2005.
[11](美)PeterThorsteinson,G.GnanaArunGanesh著,梁志敏,蔡建译..NET安全性与密码术[M].北京:清华大学出版社,2004.
[12]张长富,黄中敏.JavaScript动态网页编程实例手册[M].北京:海洋出版社,2005.
[13](美)SteveKrug著,DeDream′译.点石成金访客至上的网页设计秘籍——Don't makemethink(原书第2版)[M].北京:机械工业出版社,2006.
[14](美)J.D.Meier,AlexMackman,MichaelDunner,SrinathVasireddy,RayEscamilla,AnandhaMurukan.ImprovingWebApplicationSecurity:Threatsand Countermeasures[M],MicrosoftCorporation,2003.
[15](美)J.D.Meier,AlexMackman,MichaelDunner,SrinathVasireddy.Building SecureMicrosoftASP.NETApplications-Authentication,Authorization,and SecureCommunication-Patterns&practices[M].MicrosoftPress,2003.
[16]微软公司.微软中文MSDN.http://msdn.microsoft.com/zh-cn/default.aspx.
[17]阮国龙.基于分布式多层结构实验室管理信息系统的设计与实现[D].武汉:华中师范大学,2005.
[18]滕翼飞.基于多层结构的实验室管理信息系统架构与中间层设计[D].武汉:华中师范大学,2007.
[19]孙涛.UI的设计与测试[D].天津:天津大学,2006.
[20]金海.Web优化设计[D].长沙:湖南大学,2004.
[21]李冰心.基于ASP.NET安全架构的企业收支MIS安全机制的研究及实现[D].长春:吉林大学,2006.
[22]桑林.基于Web邮件系统的交互设计研究[D].长沙:湖南大学,2005.
[23]Betsy Beier,Misha W.Vaughan.The bull's-eye:a framework for web application user interface design guidelines.http://www.uigarden.net/chinese/tong-xin-yuan-web-ying-yong-ruan-jian-jie-mian-she-ji-zhi-nan-de-gou-jia,2008-4-9.
[24]上海艺土界面设计公司.界面视觉设计[EB/OE],http://www.etucn.com/fw3.html,2008-3-1.
[25]Windy.什么是交互设计(Interaction Designl)[EB/OL],http://www.dedream.com/research/archives/2004/09/aeaeeeaec.html,2008-2-15.
[26]青岛设计网.软件界面设计原则[EB/OL],http://www.qingdaoui.com/fb/xinxi/viewnews.asp?id=123,2008-3-1.
[27]邵志东.ASP.NET网络打印[EB/OU],微软公司MSDN中文网络广播ASP.NET开发实践系列,2007.
[28]别传锋.管理信息系统中一种通用权限管理的设计与实现[J],长江大学学报(自然科学版),2008(1).
[29]赵静.使用Rational AppScan保证Web应用的安全性,第1部分:Web安全与Rational AppScan入门[EB/OE],http://www.ibm.com/developerworks/cn /rational/r-cn-appscanl/,2008-3-2.
1 Betsy,Beier,Misha W.Vaughan.The bull's-eye:a framework for web application user interface design guidelines.http://www.uigarden.net/chinese/tong-xin-yuan-web-ying-yong-ruan-jian-jie-mian-she-ji-zahi-nan-de-gou-jia,2008-4-9.
1 Jennifer Preece,Yvonne Rogers,Helen Sharp.交互设计—超越人机交互[M].北京:电子工业出版社.2003.1.
1 上海艺土界面设计公司.界面视觉设计[EB/OL],http://www.etucn.com/fw3.html,2008-3-1.
1 Alan Cooper,Robert Reimann.软件观念革命—交互设计精髓[M].电子工业出版社,2005,262.
1 Windy.什么是交互设计(Interaction Design)[EB/OL],http://www.dedream.com/research/archives/2004/09/aeaeeeaec.html.2008-2-15.
1 郝刚等.ASP.NET2.0开发指南[M],人民邮电出版社,2006,130-141.
1 Jennifer Preece,Yvonne Rogers,Helen Sharp.交互设计—超越人机交互[M].北京:电子工业出版社.2003.1,242.
1 邵志东.ASP.NET网络打印[EB/OL]:微软公司MSDN中文网络广播ASP.NET开发实践系列,2007.
1 赵静.使用Rational AppScall保证Web应用的安全性,第1部分:Web安全与Ralional AppScan入门[EB/OL],http://www.ibm.com/developerworks/cn/rational/r-cn-appscan1/2008-3-2.
1 J.D.Meier,Alex Mackman,Michael Dunner,Srinath Vasireddy,Ray Escamilla,Anandha Murukan.Improving Web Application Security:Threats and Countermeasures[M],Microsoft Corporation,2003,6-10.
1 别传锋.管理信息系统中一种通用权限管理的设计与实现[J],长江大学学报(自然科学版),2008(1):53-57.
[1]教育管理信息化标准(第一部分:高校管理信息标准)[M].北京:人民邮电出版社,2002.
[2]教育管理信息系统互操作规范(V1.1)(草案),2004.
[3]张海藩.软件工程导论(第四版)[M].北京:清华大学出版社,2003.
[4]郝刚,袁永刚,严治国,何宇光等.ASP.NET2.0开发指南[M].北京:人民邮电出版社,2006.
[5](美)JenniferPreece,YvonneRogers,HelenSharp著,刘晓晖,张景等译.交互设计——超越人机交互[M].北京:电子工业出版社,2003.
[6](美)AlanCooper,RobertReimann著,詹剑峰,张知非等译.软件观念革命——交互设计精髓[M].北京:电子工业出版社,2005
[7]林锐,唐勇,石志强.Web软件用户界面设计指南[M].北京:电子工业出版社,2005.
[8]马军.精通ASP.NET2.0网络应用系统开发[M].北京:人民邮电出版社,2006.
[9](美)JeffreyZeldman著,傅捷,王宗义,祝军译.网站重构:应用Web标准进行设计[M].北京:电子工业出版社,2004.
[10](美)MarkM.Burnett著,良忠译.拒绝黑客——ASP.NETWeb应用程序安全性剖析[M].北京:电子工业出版社,2005.
[11](美)PeterThorsteinson,G.GnanaArunGanesh著,梁志敏,蔡建译..NET安全性与密码术[M].北京:清华大学出版社,2004.
[12]张长富,黄中敏.JavaScript动态网页编程实例手册[M].北京:海洋出版社,2005.
[13](美)SteveKrug著,DeDream′译.点石成金访客至上的网页设计秘籍——Don't makemethink(原书第2版)[M].北京:机械工业出版社,2006.
[14](美)J.D.Meier,AlexMackman,MichaelDunner,SrinathVasireddy,RayEscamilla,AnandhaMurukan.ImprovingWebApplicationSecurity:Threatsand Countermeasures[M],MicrosoftCorporation,2003.
[15](美)J.D.Meier,AlexMackman,MichaelDunner,SrinathVasireddy.Building SecureMicrosoftASP.NETApplications-Authentication,Authorization,and SecureCommunication-Patterns&practices[M].MicrosoftPress,2003.
[16]微软公司.微软中文MSDN.http://msdn.microsoft.com/zh-cn/default.aspx.
[17]阮国龙.基于分布式多层结构实验室管理信息系统的设计与实现[D].武汉:华中师范大学,2005.
[18]滕翼飞.基于多层结构的实验室管理信息系统架构与中间层设计[D].武汉:华中师范大学,2007.
[19]孙涛.UI的设计与测试[D].天津:天津大学,2006.
[20]金海.Web优化设计[D].长沙:湖南大学,2004.
[21]李冰心.基于ASP.NET安全架构的企业收支MIS安全机制的研究及实现[D].长春:吉林大学,2006.
[22]桑林.基于Web邮件系统的交互设计研究[D].长沙:湖南大学,2005.
[23]Betsy Beier,Misha W.Vaughan.The bull's-eye:a framework for web application user interface design guidelines.http://www.uigarden.net/chinese/tong-xin-yuan-web-ying-yong-ruan-jian-jie-mian-she-ji-zhi-nan-de-gou-jia,2008-4-9.
[24]上海艺土界面设计公司.界面视觉设计[EB/OE],http://www.etucn.com/fw3.html,2008-3-1.
[25]Windy.什么是交互设计(Interaction Designl)[EB/OL],http://www.dedream.com/research/archives/2004/09/aeaeeeaec.html,2008-2-15.
[26]青岛设计网.软件界面设计原则[EB/OL],http://www.qingdaoui.com/fb/xinxi/viewnews.asp?id=123,2008-3-1.
[27]邵志东.ASP.NET网络打印[EB/OU],微软公司MSDN中文网络广播ASP.NET开发实践系列,2007.
[28]别传锋.管理信息系统中一种通用权限管理的设计与实现[J],长江大学学报(自然科学版),2008(1).
[29]赵静.使用Rational AppScan保证Web应用的安全性,第1部分:Web安全与Rational AppScan入门[EB/OE],http://www.ibm.com/developerworks/cn /rational/r-cn-appscanl/,2008-3-2.