| The fast development of Internet creates great convenience for communication and cooperation among network entities;multi-service provider successfully offers service to mutual users. In the traditional collaboration mode of network, it is difficult for service provider to perform united service and manage users under multi-security field;and multi-service make the cost of management higher and the reliability lower;moreover, it becomes burden for users to remember different usernames and passwords setting in different security fields, users have to been authenticated iteratively when they login diverse service, which not only enhances operation complexity, but also induces security troubles.United identity authentication was therefore introduced. This thesis discusses the SSO (Single Sign-On) of unify identity authentication system for Web environment, analyzes current unify identity authentication, and studies a lot of authentication mechanism. Particularly, comparison with Microsoft Passport and SUN Liberty Alliance Project lays the foundation for the design and implement of a single sign-on model based on cookie in Web. The convenience and security have been taken into account in this process. The system applies SSL to the assurance of date transmission security, and XML as carrier of data. Each layer is independent, which not only ensures the relax coupling, but also enhances the integration of system. The old system jumps over the user login system and easily integrates into the SSO;the new system depends on SSO to complete the user's authentication and authorization without its own user login system. |
PDF Full Text Request