| With the globalization of economy, the advancement of Web services technology and the strength of IT industry associations alliance, the demand for the agility as well as cross-platform software is increasing. Under such circumstances, the Service-Oriented Architecture(SOA) is increasingly becoming the focus of the industry. SOA is a pattern. It has resolved the necessary business integration in Internet environment. It is a kind of implementation of software system architecture through the completion of connecting independent functional entities which could accomplish specific tasks. It features openness, agility, scalablity, federability and loosely coupled. It does not only retain the successful characteristics of traditional architecture, but also has had a completely different principle in order to promote service-oriented support for modern enterprises. However, in spite of the current SOA popularity, there is an easily overlooked factor, which is the security problem. Because as for the previous software development, in two or three layers network application environment, we can clearly know which are consumer-oriented data, and whether they have permission to operate. But when we set up a Web Services upon the data source, all connections have become loosely tied. These data can be doubted whereever in any time by any application. As a result, the new demand and necessity of researching certification and authority of SOA applications has been put forward.This article first briefly introduces the relevant knowledge of the SOA and illustrates the important role of SOA in the enterprise business integration, as well as the importance of security mechanisms in SOA. It also includes the analysis of several important factors in SOA security solution and several major identity management solutions using Web Service.There is an important issue in solutions which is the need to resolve the log in user authentication. Thus, the article then introduces a currently crucial standard in implementing SOA identity authentication, which is called the security assertion markup language (SAML). It is also a XML framework for single sign-on (Single Sign-On, SSO). In addition, there is also introduction of other related security authentication technologies, including the federal model of identity authentication, encryption and decryption, digital signatures etc.At last, it focuses on analysing and designing an identity authentication system, combining with the Winter Sports Management Center platform. It uses a variety of standard Web Services protocol. In this paper, it realizes the overall system structure design and business process in accordance with the principle of overall system objectives and requirements. It gives the key sub-module design and implementation. It uses BEA's WebLogic Server 10.0 MP1 as the development platform to use its components supporting for SAML1.1 and its excellent JAVA server advantages, implements the system model and gives the final presentation of the use case. Finally, a summary of related work on the system and the direction of future research to optimize is discussed. |
PDF Full Text Request