摘要
手写签名是个人独有的生物行为特征,可以用来鉴别个人身份。本文提出一种基于联机手写签名和数字证书融合的Web Service身份认证方案,该方案把数字证书和所有者的生物特征相结合,有效地解决了验证数字证书的使用者和所有者是否是同一实体的问题。本文采用SOAP协议用XML数字签名和加密技术封装用户和服务器之间的通信消息,为Web Service的信息交换提供可靠保障。
Handwritten signature is unique behavioral biometric characteristic of human and can be-used to identify users. This paper proposes a novel authentication scheme about Web Service that combines the digital certification with on-line handwritten-signatures, which provides a good solution to bind digital certificate with its owner by his biometrics. The information between the user and the server is encapsulated into SOAP messages with both XML digital signature and XML encryption and the transaction can be conducted securely on Web service.
出处
《计算机科学》
CSCD
北大核心
2004年第12期142-145,共4页
Computer Science
基金
哈尔滨市科技攻关项目(2003AA1CG055-10)
