摘要
Web服务具有松散耦合、语言中立、平台无关性、开放性的特性,这使得它很适用于跨平台跨应用的集成。为了实现多应用系统的用户认证,结合已有的Web服务安全规范,设计了一个多应用环境下的支持多种认证方式的基于Web服务的统一身份认证服务,详细描述了其模型、消息格式、流程及实现,并进行了安全性分析。
Web services technology is loosely-coupled, language-neutral, platform-independent and open. Thus web services are suitable for cross-platform and cross-application integration. To implement user authentication in cross-application systems, a cross-application single sign-on web service is presented. The service is based on present web services security specifications and could support several authentication modes. The architecture, messages, flows and implementation of web service are described. And a security analysis is also presented.
出处
《计算机工程与设计》
CSCD
北大核心
2006年第6期921-923,959,共4页
Computer Engineering and Design
基金
国家自然科学基金项目(60273064)