摘要
Web服务为代表的软件服务及服务协同成为互联网应用的主流,针对Web服务认证是Web服务访问控制和安全调用的前提,分析传统认证机制在满足Web服务对跨域认证需求方面所存在的缺陷,归纳和分类了当前Web服务认证技术的研究成果,论述Web服务安全标准WS-Security、基于声明标记语言SAML和基于XML加密管理规范XKMS的服务认证技术,最后讨论了Web服务认证技术的挑战和研究趋势。
The software service and service cooperation represented by Web service is becoming the mainstream of Internet application, Web service authentication is the premise of Web service access control and security call. The defects of the traditional authentication mechanisms to meet the needs of Web service for cross-domain authentication are analyzed, Web service authentication researches are summarized and classified, and Web authentication based on WS-Security, SAML and XKMS are described in detail. In the end, the challenge and development trend of Web service authen- tication is discussed.
出处
《桂林电子科技大学学报》
2013年第3期246-252,共7页
Journal of Guilin University of Electronic Technology
基金
国家科技支撑计划(2012BAH18F00)
国家自然科学基金(61201250
61163058)
广西自然科学基金(2012GXNSFBA053174
2012GXNSFAA053230)