SSL protocol, as one of the most important information security technology in the e-commerce, is currently a hot research focus. The SSL protocol is located between the network layer and application layer of the TCP/IP protocol model, which uses TCP to provide a reliable end-to-end security services, it makes the communication between the client/server applications will not be attacked eavesdropping, always to authenticate the server, and can choose to authenticate the customer. The problem caused by overloading of the server for SSL protocol, which results in a delayed response time, and frequent connection interrupted, this thesis which face the quality of Web service requirements, research the basic theory and key technologies of SSL connection recovery mechanism.This thesis presents a selective partial recovery mechanism to achieve SSL connection migration protocol and provide the client a transparent fault tolerance guarantee. The proposed strategy does not change the basis of the network environment, just by simply adding and removing server provides the client with transparent SSL connection recovery mechanism, which has good scalability and transparent deployment. Finally, the proposed strategy is evaluated to be practical and efficient through experiment studies. The results of this thesis have important theoretical significance and application value in the security of Web services. |