Research And Design Of Single Sign-On System Based PKI

Netword users have to manage one set of authentication credentials(usually passwords) for each application.Single Sign-On (SSO) is a solution to the usability, security and management implications of this situation. Under SSO, users authenticate themselves only once and are logged into the services they subsequently use without further manual interaction. SSO technique has been researched in this paper and several achievements have been obtained:The liberty protocol and Microsoft Passport SSO technology are researched in this paper. And, both the security and feature are analized.A Based URL SSO protocol is porposed. The protocol overcomes the shortcoming of traditional SSO portocle depenting single authentication server overly. The URL contains the authentication server address and other information to provide flexible deployment.This paper designs and implements a model for Single Sign-on ,the model's security based on Public Key Infrastructure, and it ensures the security of multiple Web system connecting each other. The system is implemented on J2EE platform. It solves the secure problems such as reply-attack, Identity authentication effectively.And the system has a simple implementation. It reserves the old module of access management, reduces the cost of system integration, implements access management flexibly.In this paper ,a SSO protocol is proposed where a GSM operator plays the role of the Authentication Service Provider and by which its subscribers can be authenticated to Service Providers without any user interaction and in a way that preserves the user's privacy and mobility.The protocol only requires minimal changes to the deployed GSM infrastructure.