| Web Services are the kernel and key of the dynamic e-business and enterprise application integration. However, the security problems that Web Services meet in practice have been restricting the development and application of Web Services. Only relying on traditionary secure transport solution, such as SSL and TLS, cannot meet security requirement of Web Services. So there need add message security to ensure the security of SOAP message that is the kernel of Web Services.First, this article introduces some concepts and security problems concerned with Web Services. And then introduces the concepts of SOAP and the influence which SOAP message security impact on Web Services message security. In succession, put forward the specifications concerned with Web Services message security ,such as WS-Security XKMS SAML. According to those specifications, design a secure model of SOAP message which can ensure the confidentiality integrity. nonrepudiation validation and authorization of SOAP message. At last, design a component of message security, which can realize SOAP Encryption and SOAP signature. In addition, apply the component to a practical application system of Web Services, and analyse the security of the Web Services message.
|
PDF Full Text Request