网格环境下虚拟企业信息系统中单点登录问题研究

Research on Single Sign-on of Virtual Enterprise Information System in Grid Environment

本文对网格环境下虚拟企业单点登录安全问题进行了分析，提出了一种基于安全断言标记语言（SAML）的单点登录模型。该模型具有与底层安全实现无关，可与现有安全系统无缝集成等特点，包括请求端、中心安全服务端和目标服务端三个主要功能模块，在设计模型工作流程时充分考虑了其安全性，并注意到网格环境下任务时长可能超出令牌生命周期的情况，给出了相应的解决办法。

In this paper, an analysis is given to the single sign-on problem of virtual enterprise in grid environment. A model is purposed based on Security Assertion Markup Language with full consideration of safety, including three main function modules which are request node, central security server and target server, with the characteristic of independence from the bottom security implements and seamless integration with the existing security system, the fact that task time may exceed token life cycle has been taken into account and the corresponding solution is given as well.