Design Of Integrated Logging-on System Of Power Enterprise Based On SRP And SAML

With the Internet population, the sercice integration superiority of the distributed information systems in power enterprises becomes daily visble. The each cooperation information system in power enterprises is independent and isomerous, but interconnected. The Internet has become the normal method to connect these systems. But with the Internet safety problems increasingly outstanding, the information safety of the power enterprise becomes the key factor affecting its stable movement. On the environment, it is very important to ensure the validity of access entity. Basis on the power enterprise's intergration service, aim at the requirement on interoperability and security in the architecture of the next generation EMS/MMS, which is brought forward in the 2005 international super electrical network function annual meeting, the system in this paper is designed based on module and service-oriented, with the newest information technologies such as SRP-6, SMAL, XML, SOAP, WS-Security and so on. Centralized authentication and distributed authorization access is used to exchange authentication assertions between the different information systems. Through the example analysis, the system is proved to meet the requirements of future power system in integration and strong security performance, has important realistic meaning to the network safety construction of the power system. The mainly research works are listed as the followings:(1) Through the analysis of the power system safety demanding, the information safe technique is sure to be the key of the system safe accessing. The introduction and research of the related information safe technique and protocol become the foundation for the design which carries the whole system.(2) Researching the traditional logging-on mode based on SAML thoroughly, analyzing its adcantage and shortage towards, the author put forward a improved integrated logging-on mode. And the safe problems faced in the logging process are also analyzed. Combing with the safe criterions related to Web service, the author put forward the homologous safe solutions.(3) Basing on the improved integrated logging-on mode, the whole frame of the system is designed, as well as each module of the frame respectively.(4) The system is proved to meet the requirements of future power system in integration and strong security performance with the example analysis. And the summary of the research work as well as the outlook are also done.