摘要
本文针对单点登录技术(SingleSign-OnSSO),结合网络安全机制分析并指出目前各种SSO模型的不足,提出基于broker(经纪人)与Kerberos混合认证的Multi-Agent(多代理)SSO模型,采用分级授权、随机数发放、移动代理的方式有效地解决了匿名用户访问、系统管理员登录、时间同步依赖带来的安全问题,同时也为SSO系统提供了高效而便捷的访问控制机制。
This paper presents technology of single sign-on, pointing out the flaw of the various SSO models combined with mechanism of network security, provides a Multi-agent SSO model, which solves the security problem of access of anonymous users, enter of administrator ,synchronization of time and offer a high effect mechanism of access/control. It adopts authority information levels, transmit random numbers, per-registeration, mobile-agent.
出处
《微计算机信息》
北大核心
2006年第06X期115-117,共3页
Control & Automation