| As a model with loose coupling and distributed calculating. Web services provides a way to interoperate in a platform- and language-neutral manner between two applications. However, Web services brings some new security venture, such as new menaces that are from XML application level, exposure of key applications, span among enterprises' boundary, etc. These new security venture slowed the widespread acceptance and implementation of Web services to a certain extent. Nevertheless, the actual measures for securing Web services can not protect Web services adequately yet. In the field of Web services research, it becomes a subject with important significance that construct a comprehensive solution for Web services security.Aiming at the thing that how to improve Web services security, a message level security mechanism of Web services platform was studied and implemented. The thesis includes the following main pursuit.1. Exsisting security technologies were analysed across-the-board, subsistent problems were sumed up.2. The exsisting Web services platforms' architectures were studied, basing on their deficiency, the architecture of Web services platform that can control accesses to its components was analysed and designed. And such architecture was regarded as the supporting object for message level security framework.3. Basing on the study of Web services' secure message mode, SOA.and the system level Web services, a Web services platforms' message level security mechanism was brought forward. With a message level security processor and a services-faced idea , a message level security framework was constructed.Then, the security framework was applied to Web services platform, and its architecture was analysed and designed. On the one hand, the services-faced idea that remains with the field of Web services technologies was represented across-the-board by the mechanism. On the other hand, the mechanism provides message level security for Web services with the form of system level and special security function, settles the security problems faced by Web services, and besides, improves the automaticity of executing Web services platform's security operation.4. A distributed SOAP gateway which is regarded as the message level security processor of Web services platform was designed and implemented. The SOAP gateway lightens the processing burden for Web services container, advances the efficiency for the SOAP gateway's server side, moreover, is propitious for Web services platform to manage security centrally.5. The distributed SOAP gateway's function of processing security problems was proved by some tests. Therefore, it was showed that the SOAP gateway would improve the security of Web services.
|
PDF Full Text Request