Implementation Of A Single Sign On System Based On Various Authentications

With the development of World Wide Web, Internet applications increased greatly. SSO (Single Sign On) system integrated different application system to a centralized management system and can simplify users' logon. This has real sense to improve network security.By analyzing various domestic and foreign SSO systems, we proposed a SSO system to support different kinds of authentication ways. The SSO system stores users' information on Certificate Authority, which supports the username/password authentication, one time password authentication and CHAP authentication. The system uses timestamp based on Digital Signature Technology and asymmetric encryption algorithm. Thus it can effectively prevent the illegal users'data falsification and can ensure user's information transmission security. And experiment proves the system has a good deployment, scalability and security property.The main contributions of the thesis are:1. Analyzed some of the existed SSO system.2. Proposed a SSO system based on various authentication and introduced process flow of the SSO system.3. Gives detailed realization interface of certification servers and application servers. Elaborate the information transmission of user, certificate authority and application server.4. After analyzed the safety of the SSO system, we pointed out its future research direction.