Web services, which adopt general protocol and technology, can be easily accessed by users and have been the research hotspot in distributed computing, but the downside of this easiness is that security is compromised.In this paper, it presents the basic knowledge of XML and Web services, XML Web services system and XML related secure authentication techniques. Single Sign-on can be used to pertect Web services. SAML is a protocol based on XML.It can make SSO of Web services reality easily. SAML protocol is talked over in detail in this paper, and access control of Web services based on XACML protocol is discussed. The main contents are:1 Concerning a system of Single Sign-on based on SAML,the security of the system based on SAML is analyzed,and the opposite policy is proposed.2 There are two way to get a Assertion in SAML. The Single Sign-on system in the Browser/Artifact way is discussed. The security of the system is analyzed,and the opposite policy is proposed.3 An access control system for web services is presented based on SAML and XACML, which uses SAML to single sign-on and introduces XACML to control the access of users. |