摘要
针对网络中应用系统授权缺乏统一管理、人员和权限信息不一致、开发投入高等问题,文章提出了一种基于公钥基础设施、证书认证、Webservice和LDAP技术的面向应用系统的授权服务平台方案,并重点描述了该平台的系统架构和应用集成模型。最后,结合业务呼叫安全服务平台给出了一个如何使用授权服务平台的应用实例。
Aiming at the problems that application system authorization is lack of unified management, disaccords in personnel and permission information, and has high development input, etc in network, a scheme of Authorization Service Platform in Application System-Oriented Architecture and based on the technology of a public key infrastructure, certificate authentication, webservice and ldap is proposed in this paper. The paper describes the systemic architecture of Authorization Service Platform and its model of application integration. Finally, in combination with the platform of security call service, an example on how to use the Authorization Service Platform is presented.
出处
《信息安全与通信保密》
2007年第6期166-168,共3页
Information Security and Communications Privacy
