| With the populization of NetWork ,more and more systems have been claimed which finally become the multisystem use in alliance.The combined use of multisystem,in addition to the conformity of the existing systems,more desirably is to become the unified,safe authentication and access control system , in the purpose of cutting down the security risk of the systems.The existence of the authentication and access control based on service provider alliance, technically resolves the problem of security management. However, when a demand of more security guarantee in more scope during organizations happens ,traditional service provider alliance becomes nothing.Nowadays, the research of authentication and access control is hot ,and more and more new technique,new criterion terms ,such as Web Service protocol based on SOAP,SAML,XACML,SPML,WS-Federation which force the application of this domain.After the collecting and studying on the existing schemes ,and combining the new technic(SAML,XACML,JAX-RPC,SPML),I advance a new security management scheme of identity provider alliance based on authentication and access control which is good for the security management during organizations.In the scheme,a new session management mechanism will be set to adapt to session management during trust circles,in order to keep the consistency ,Confidentiality, and to ensure the credence creation, credence transformation , credence usefullness. It supports overall logout,account establish,password synchronization. Design a new scheme on policy negotiation based on multi-tier access control. |
PDF Full Text Request