| As the software applications of the enterprise are more usual, a lot of applications are develop out, these application are work out by different technique and have their own authentication mechanism because of the actual factor. So if the users want use these application, they should log on one by one, they should spend a lot of time in typing the authentication information (username and password). It is not efficiency. If the workers were adjusted, all their information in the application systems must be adjusted too. It is a hard work for the administrator and very easy to cause error, so it has a strong meaning to research the problem and work out a solution, Single Sign on (SSO) is a popular solution for these problem. The definition of the SSO: User can visit these applications which trust each other by log on for once. Actually, the function of SSO is map the user identity to a kind of sign present by data. Once user log on, he can get the electron ticket from the SSO, after that, the user don' t need to log on any more.The paper' s main task is to build a SSO software function for the present enterprise, First, it introduces the basic information security theory concerning the SSO, then contrast and anlyse the popular modle of implemention SSO(Kerberos,Microsoft Passport,SAML) detailedly. Based on these, anlyase the enterprise' s actual requirement, work out a flexible modle based on SAML and RBAC, and improve on RBAC to fit the flexibility. Finally, according the designed model, use the ASP. NET and Database technique to implemention a SSO system for enterprise , it give a good pattern for implemention SSO. |
PDF Full Text Request