Research On Message-Oriented Middleware And Security Based On J2EE

An important problem that the distributed system is designed is how to let everypart operated on different nodes work in coordination, and the key problem iseffective communication among these nodes. The effective communication needs areliable message transmission service for the nodes. Message-Oriented Middlewarehas offered fruitful solution for reliable message transmission among the distributednodes. Because Message-Oriented Middleware is the loose communication meansamong processes, the cooperation of distributed nodes have heavy flexibility. At thesame time, the confidentiality, authentication,etc, of message become the mostimportant things in the study of network information safety. The identityauthentication is very important in the network security. The main research in thispaper is to set up an unified authentication system which can complete unifiedauthentication and authority and administation.At first, the paper simply analysize JMS standard, definition and classification ofMessage-Oriented Middleware, and two kinds of communication models:point-to-point model and Publish/Subscribe model. Java Message Service(JMS) is aspecification for MOM based on Java technology created by Sun Microsystems. Itmakes the heterogeneity of network programming language, OS and Database. Then,based on the theory analysis and technical research to the relevant technology ofMessage-Oriented Middleware, I propose new LyMom MOM.The paper emphasizes the design and implement of user authentication system.After analysizing public key cryptography, private key cryptography and somedifferent authentication mechanisms, this paper puts forward a security solutionnamed Common Security Authentication System(CSAS). It is based on Kerberosmechanism. Kerberos is a famous distributed authentication protocal. The paperimproves Kerberos protocol based on public key encryption technique and userandom number method to replace time stamp technique, which prevents replayattack. It abandons the weak points of original protocol. The new protocol has ahigher security and adaptability. The system is extensible and compatible because of making use of Generic Security Service Application ProgrammingInterface(GSS-API). GSS-API provides application with common interfaces, andthey work with Kerberos together to make sure the system security in the flow andmechanism. Any other system can be integrated into this system through GSS-API. Inaddition, LDAP is used to store and manage users' information, and strengthen thesystem maintainability.The research on message-oriented middleware and security authentication systemhave the vital significance in the current enterprise application conformity.