摘要
在J2EE Web系统中应用JAAS技术提供的动态、可插拔认证模型实现用户身份的安全认证.通过X.509数字证书和用户口令进行双重堆叠认证,在Tomcat服务器上配置实现服务器与客户端之间的SSL双向认证,并通过建立HTTPS连接以保护数据的安全传输,进一步提高系统用户认证的安全性.
In the J2EE Web application system, JAAS technology is used to provide a dynamic, pluggable authentication model to achieve the authentication of user security, i.e., through the double stack authentication of X.509 digital certification and user authentication password. The SSL mutual authentication is set up in the Tomcat to achieve authentication between the server and client and HTTPS connections are established to protect the security of data transmission and further improve the security of user authentication.
出处
《五邑大学学报(自然科学版)》
CAS
2011年第3期74-78,共5页
Journal of Wuyi University(Natural Science Edition)
