摘要
在比较现有的3种单点登录模型优缺点的基础上,分析跨域单点登录应有的基本功能,尝试建立一种云环境下的跨域单点登录系统。方案利用Web Service技术封装原有系统和构建身份映射功能,使原有系统在改动尽量小的情况下与新系统的认证实现无缝对接;通过部署身份认证系统群、跨域控制器、票据授权服务器、传输加密和用户信息库等措施实现云环境下跨域跨平台的集中认证。方案实施简单,安全性高,可扩展性好。
On the basis of comparison between advantages and disadvantages of the three existing single sign-on models, basic functions of cross-domain single sign-on are analyzed. A try at establishing a cross-domain single sign-on system in cloud environment was made. A solution using Web Service technology to encapsulate the original system and construct identity map-ping function was design to make certification achieve seamless docking between the original system with least change and the new system. The solution achieves the centralized certification under cross-border and cross-platform in cloud environment through the deployment of authentication systems group,cross-domain controller,note authorized server,transmission encryp-tion and user information database. he solution has the characteristics of simple operation,high safety and good scalability.
出处
《现代电子技术》
北大核心
2015年第2期49-51,55,共4页
Modern Electronics Technique
基金
宁波市软科学项目(2012A10053)
关键词
云环境
单点登录
用户认证
跨域
云服务
cloud environment
SSO
user authentication
cross-domain
cloud service