Design And Development Of Converged Network Multi-Level Authentication-Based Unified Login System

Network Convergence gradually forms business application integration. From the current status quo of view, it is the inevitable trend of network development. However, with the development of network convergence, users on different networks have different user ID, respectively, with different authentication systems, authentication, how to provide a converged network for a unified login system will be very meaningful. Therefore, in the background of the merge of the Internet, telecommunications network, Radio and TV Network, we put forward a unified logon is very urgent.Single sign-on (SSO) is the most popular enterprise business as one integrated solution. However, some security vulnerabilities exist in current SSO systems, and user's experience is not convenient. Converged network multi-level authentication-based unified login system adapts to the needs of service integration in NGN.As a realization of a prototype, MLA-ULS includes Service Handle and Access Runtime Environment (SHARE) and UL management. The major services provided by SHARE include identity mapping, unified login, unified logout and user self-service portal capabilities. In addition, SHARE adopts the layer design idea, and from top to bottom SHARE is divided into service layer, authentication layer, support layer and data layer. Which runs through the four layers of module is management layer. It contains self-management module, warning, log, unity, and registration management of service and user.Based on the existing single sign-on system flow, this paper proposes an extension of SSO named MLA-ULS. In this solution, SPs are divided into several levels based on security intensity. This allows the model to benefit from key advantages in security of the scheme. In specific procedures, MLA-ULS adds security strategy consultations. So MLA-ULS can help users to realize unified login and logout in their ways. In this way, SHARE meets the requirements of security and performance; in the meantime, it improves the user's experience and lowers the burden of application server.Finally, this paper introduces the design of multi-level authentication based single sign on, including the foundation of implementation, module division, workflow, and so on. And last gives the test results and ideas for further research work.