In this paper, it presents the basic knowledge of XML, XML WEB SREVICE system and XML related secure authentication techniques. Then, the paper introduces several standards of Single Sign-on and the scheme of Single Sign-on based on SAML in Liberty Alliance Protocol. Finally, some improvements are proposed and PKI mechanism is applied to provide a secure communication environment. The main contents are:1. XML WEB SERVICE based on XML technologies are presented thoroughly.2. The security extension of SOAP is analyzed, XACL is applied in an concrete realization to discuss its principle and application and SAML system frame and its work principle are concluded.3. PKI is proposed to be applied into the SSO system according to Liberty Alliance. Based on this model, it displays its new message exchange and disposal. The optimizing of system performance is analyzed and the infeasibility of the secure attacks is discussed in details.4. In many aspects, the misconceptions of SAML are clarified.5. The adoption of PKI in Grid Computing in order to resolve SSO is presented.
|