| Web open platform is a product of the development of Web2.0 era, it provides more possibilities, more and more rich applications, meanwhile, enhances the ability of infiltrate. And it not only effectively prevent the fragmentation of the Internet, but also is about to become an effective carrier for personal Web operating system. However, current research and the existence of Web open platform design of the many deficiencies, not only affects the platform functionality but also causes more and more security issues , impacts the development of the platform, in particular, has seriously hampered the realization of open platform at domestic. In order to support a number of operations security running, there must be a safe and reliable system support structure.Web open platform is an integrated system, it covers a broad range of technologies including encryption and decryption technology, digital signature technology, access control technology, content filtering etc. and it was also involved in information management technology, such as the management of users, applications management.This paper concerns this open platform for Web security mechanism research and design.This paper will first introduce the background and the development trend of open platform, achieve the overall planning in accordance with the general structure of the security system, and in terms of the main security issues in the platform, point out security needs, especially from the application security viewpoint.In this paper, based on the prominent characteristics about open, a detailed application-security-related solution is given. Firstly according to the security communication and role-based access control module, combined with digital signatures and other security mechanisms, set up authentication and authorization mechanisms in order to fulfill application authentication, user authentication and special access control, meet the need with freedom access about multi-role multi-privileges for users and security access for a third-party applications; accomplish rational and efficient application management module research and design, and ensure the application safety audit and platform integration; do some research on cryptographic techniques to complete the cross-domain authentication of application authentication efficiently; complete display filter module definition and design, including an open platform client security code filtering, effectively reduce security vulnerabilities and attacks, and ensure the safety of the platform framework for scalable demand.With the development of the Internet, security issues in open platform will explosive increase accompany with open requirements growing. Research and design security mechanism on Web open platform will be good for Internet Security, as well as the developer to provide a powerful help.Finally, we achieve open platform named Yahoo relations system in Yahoo! China using designed security mechanisms, now it has been running online. The paper details the realization of programming related to authentication and authorization part, display filtering part and database abstract etc. |
PDF Full Text Request