Research Unite Authentication Based On Xml

With the development of information technology, many kinds of network-based application can be found in current business works. For running business properly, users have to login different applications. Considerate the security aspect, the authentication ofusers is a required part of each application. Due to the independent attribute of each application, users have to logon and logoff for visiting other applications. It is a challenge for nowadays authentication system to provide a solution to simplify the processing of user's logins and keep security of each application.Traditional universal authentication systems, such as Kerberos and PKI, have been implemented in some situation. But, the too much modification for the current applications and relatively complicated technology stop these authentication systems using widely. Web service as the new technology nowadays, which is loosely coupled, independent from platform and programming language and capable of interoperability, give a new idea for the current authentication system.This paper proposes a realized unified authentication frames on the basis of XML security protocol, which utilizes technology of the catalogue to realize the unified management to the network user and network application.The framework is basis on the pki,and uses the XML Key Management Specification (XKMS) which allows for easy management of the security infrastructure, while the Security Assertion Markup Language (SAML) makes trust portable. SAML provides a mechanism for transferring assertions about authentication of entities between various cooperating entities without forcing them to lose ownership of the information. The designed system completes data exchange between difference construct databases with XML and SOAP technologies, and realizes the centralized management of user's information. Each tie of the system is relatively independent, which guarantees the loose coupling of the system, In additional, the system can be integrated easily. So, new application system need not rely on it's own authentication system but unified authentication to complete the authentication and authorization ofusers, and reduces the degree of difficulty of system developing. With the unify identity authentication system being gradual and perfect, it will play an important role among the information safe system of campusnetwork, and network management will be simpler and effective.