Study And Implementation Of Web Services Security

This paper points out the deficiencies and shortcoming of Web Services Security provided by existing security technologies, and analyses its new security requirement in detail. According to the new XML Security specializations released by W3C and other software manufacturers, The functions such as XML Encryption,XML Signature and Security Tokens are accomplished. By analyzing the characteristics of Web Services structure, this paper puts forward a Web Services Security Model based on message layer. The message layer is composed of message handlers. The Message layer is inserted into the message processing sequence of Web Services and provides transparent security services for Web Services. The implementation version of the model can provide various security services, such as user authentication, message encryption and decryption, message digital signature and verification and access control. The final Web Services Security System is able to manage Web Services and adjust their security level. Zhang Zhenxing(Computer Applied Technology)Directed by Prof.Wang Cuiru...