Based On Web Services Security Middleware Design And Implementation

SOA and Web Serivces are the first choice for enterprise information systemnowadays,they're revolutionary technologies for network applications,and they're hotrecently.However,security of Internet is always a unavoidable and critical problem,even inthe SOA environment.A new technology is always based on some old technologies,PKIhas solved a lot of problems of network security,and there were some security middlewaresbased on PKI.But how can the PKI and security middleware solve the security problem ofS0A and Web Services?This paper will discuss on it, and to integrate Web Services andSercurity Middleware to make the Sercurity Middleware more interoperable,more easy touse,more flexible and more extensional while it playing a security role in SOA.First, this paper will explain the theory of PKI and cryptography, and how thetraditional Security Middleware solved the security problem using PKI. Then the paperwill analyze SOA and Web Services, especially the security of the Web Services includingthe related standards. After all of this, the paper will show a new solution that is SecurityMiddleware over Web Services, including its architecture, design, implementation and anapplication scene.