| With the development of enterprise information technology and internet technology in recent years, more and more network application services based on B/S architecture have been developed. Unified Identity Authentication becomes increasingly prominent to meet requirements of existing application integration, reducing development cost and difficulties and raising user's work efficiency.Based on analyze of various available existing implementation model of Unified Identity Authentication at home and abroad, specially the Kerberos protocol and Passport system, a solution based on the Cookie Notes is proposed in this paper. The solution use the Cookie Notes as the carrier to pass authentication information, enabling users log on once to visit on a variety of resources securely. The solution has been designed and implemented on the J2EE platform. In the system, the Cookie of the Https protocol header is used to carry the electronic ticket. Due to reuse of electronic ticket in the validity period, the authentication is automated, which do not need users enter the account and password again, while visiting those service requires authentication. Thus, the Unified Identity Authentication is achieved.Finally, the thesis gives a running instance of the system, and evaluates the system by security, enforceability, scalability and performance. |
PDF Full Text Request