期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

面向Web服务的跨域认证机制研究

Study on Cross-domain Authentication Mechanisms for Web Services
在线阅读 下载PDF
导出
摘要 Web服务是一种崭新的分布式计算模式,是下一代电子商务的框架。Web服务的发展提出了许多安全挑战,其中主要的挑战之一就是要设计安全且有效的跨域身份认证机制。安全声明标记语言(SAML)标准的出现为解决这一问题带来了希望。本文分析了目前存在的Web服务的认证方式的优缺点,讨论了几种与Web服务相关的标准和协议,重点分析和研究了基于SAML的跨域单点认证机制的实现原理和特点,并讨论了其安全问题。 Web service is a new distributed computing mode, and is the framework of the next generation e-commerce. The development of Web Services poses a lot of security challenges, and a key challenge amongst them is the design of secure and effective cross-domain identity authentication mechanisms. Security Assertion Markup Language (SAML) brings the hope of addressing successfully this issue. This paper analyzes the existing authentication mechanisms for web services, and discusses some kinds of standards and protocols relating to web services authentication. Especially, SAML-based cross-domain authentication mechanism and related security problems are analyzed and discussed.
作者 沈海波
机构地区 湖北教育学院计算机科学系
出处 《培训与研究(湖北教育学院学报)》 2005年第5期21-25,共5页 Training and Research-Journal of Hubei College of Education
基金 湖北省教育厅重点项目资助(D2005005)
关键词 WEB服务 跨域认证 安全声明标记语言 单点登录 Web Services Cross-domain Authentication SAML Single Sign-On (SSO)
分类号 TP309 [自动化与计算机技术—计算机系统结构]
  • 相关文献

参考文献3

二级参考文献71

  • 1马亚娜,钱焕延.Passport单一登录协议及其安全性分析[J].计算机工程,2000,26(S1):138-142. 被引量:1
  • 2周傲英 凌波.Peer-to-Peer系统及其应用.计算机科学,2002,29(8):200-203.
  • 3Web Services Transaction Specification. http://www-106.ibm.com/developerworks/library/ws-transpec/
  • 4Cabrera F, Copeland G, Cox B, Freund T, Klein J, Storey T, Thatte S. Web services transaction. http://www.infosys.tuwien.ac.at/Teaching/Courses/IntAppl/Papers/ws-transpec.pdf
  • 5Mikalsen T, Rouvellou I, Tai S. Reliability of composed Web services from object transactions to Web transactions. In: Proc. of the OOPSLA 2001 Workshop on Object-Oriented Web Services. 2001.
  • 6Benatallah B, Dumas M, Sheng QZ, Ngu AHH. Declarative composition and peer-to-peer provisioning of dynamic services. In:Proc. of the 18th Int'l Conf. on Data Engineering. San Jose: IEEE Computer Society, 2002. 297~308.
  • 7Mennie D, Pagurek B. A runtime composition service creation and deployment and its applications in internet security,E-commerce and software provisioning. In: Proc. of the 25th Annual Int'l Computer Software and Applications Conf. (COMPSAC 2001). Chicago:
  • 8Tosic V, Mennie D, Pagurek B. On dynamic service composition and its applicability to business software systems. In: Workshop on Object-Oriented Business Solutions (WOOBS2001). 2001.
  • 9Steen MV, Tanenbaum A, Kuz I, Sips H. A scalable middle-ware solution for advanced wide-aera Web services. Distributed Systems Engineering, 1999,6( 1 ): 34-42.
  • 10Burstein MH, Hobbs JR, Lassila O, Martin D, McDermott DV, McIlraith SA, Narayanan S, Paolucci M, Payne T, Sycara K.DAML-S: Web service description for the semantic Web. In: Horrocks, ed. Proc. of the Int'l Semantic Web Conf. Sardinia:Springer-Verlag, 2002

共引文献642

培训与研究(湖北教育学院学报)
2005年 第5期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部