| Users' identities certification, which is among the basic function in network, is the foundation of network application. After certificating users' identities in security, we can manage web users and audit their actions. As a basic information flat, Network Users' Identities Certification System already supply many services for lots of different fields.Some encryption algorithms are used hi the work of network users' identities certification. There are two typical models of authentication, which are based on the technology of symmetric and asymmetric encryption respectively. The encryption algorithms ensure the security of message transfer, which among the clients and the authentication servers. Moreover, hash algorithms prevent information from updating by illegal users. At present, methods of authentication include: authentication method based on Challenge/Response system, authentication method based on Time-Synchronized system and KERBEROS system.In July 2000, Microsoft released its strategic technology-.NET, which is to let Microsoft be the leader in the Internet time. Microsoft is transforming from a software company to a software service company. The technologies and new application models introduced by .NET will make software development change a lot..NET introduces a series of new conceptions. Common Language Runtime let .NET have the feature of cross-language integration; .NET components are self-describing components because of Metadata; Assembly simplifies the configuration and deployment of applications. Meanwhile, .NET adopts many security policies. The developer using .NET can choose one of authentication modules to certificate the identities of web users, which ensures .NET has high security.After studied the technology about users' identities certification system deeply, the author established a new model of users' identities certification and implemented it based on ASP.NET. At first, this paper addresses the research situation of the technology. Then, .NET technologies, such as Web Service and SSL protocol, are produced. In the fourth section, the author analyses the encryption algorithms and hash algorithm which used in the model. The fifth section turns to the author's research work. The author presents the model in detail. Two parts form the authenticationmodel. One is to certificate the local users' identities who are in the Intranet, the other is to certificate the remote users in Internet. The author gives a proper evaluation to the model after analysis of the model's security. The thesis ends with the future work.Along with the development of computer hardware and software, the research of Network Users' Identities Certification System will improve and develop.
|
PDF Full Text Request