Ajax/SOA模型下的SOAP附件安全策略

Security policy of SOAP Attachments for Ajax/SOA Model

客户端Ajax与服务器端SOA的结合成为了软件架构发展的一种趋势,然而Ajax/SOA架构的安全性也需要重新考虑。该文通过对Ajax和SOA的综合考虑得出,SOAP消息的安全性,尤其是SOAP消息附件的安全性对于这一新的架构来说是至关重要的。因此,该文针对SOAP消息附件介绍了一种新型的SOAP消息附件安全模型,并对其中的时序控制算法做了相应的改进。

The combination of Ajax on the client side and the SOA on the server side is the developing tendency of the software architecture .However, we must discuss the security of Ajax/SOA architecture again. After analyzing the characteristic of Ajax and SOA, this paper concludes that the security of SOAP messages, especially the security of SOAP attachments is very important for this new architecture. So, firstly, this paper introduces a novel security model of SOAP attachments, and then proposes an improved algorithm for message matching.