摘要
为了保护Web服务的数据安全,提高数据传递与操作的灵活性,提出了对SOAP消息元素的签名和加密的方法。首先对WSE3.0的策略断言框架和策略断言进行了分析,然后对创建自定义策略断言类及相应的筛选器具体过程进行了详细介绍。在此基础上设计了对SOAP消息元素的签名和加密的策略断言,并对相应的筛选器类进行了重写。最后结合具体的应用案例,通过使用自定义策略断言,表明了该方法可以对SOAP消息元素进行签名和加密,提高了消息传递的灵活性。
In order to protect the data security of web service, enhance the data transfer and the operation flexibility, a method of element signature and encryption on SOAP message is proposed. First, the policy architecture and assertion of WSE (web service enhancement) 3.0 is analyzed, and then the process of creating a custom assertion class and the corresponding filter is detailed introduced. Based on this, the assertion of element signature and encryption on SOAP message is designed, and the corresponding filter type for the rewritten. Finally, the use of the concrete example, the method of element signature and encryption on SOAP message is verified through the custom assertion. This method improve the flexibility for web service messaging.
出处
《计算机工程与设计》
CSCD
北大核心
2009年第8期1914-1917,1921,共5页
Computer Engineering and Design
