The Design And Implementation Social Security’s Single Sign-on System Based On Trusting Technology

With the development of information technology and the increasing improvement of Chinese social insurance system, the social security department attempts to initiate cooperation with enterprises and institutions in some fields covering banks, medical centers and so forth. Through linking the web services, gateways and integrated application programs, social security departments and enterprises can accomplish information resource sharing. However, if the user wants to get access to these independent systems, he or she needs to make identity authentication in each system. Therefore, it is crucial to find an authentication method of crossing-domain server, in which authentication is required only once while visiting differing systems.Firstly, the paper analyzes current situation and development trend of the social insurance information services and single sign-on technology, based on which the research content and significance on this subject are brought forth. Secondly, a detailed analysis is made for the requirements of system and the current main solutions to single sign-on systems. Moreover, it presents the reasons why SAML-based standards are selected as a solution. Then the paper probes into several key problems on establishing single sign-on system, and then provides corresponding solutions. Subsequently, it proposes the framework of Single Sign-on System on the basis of SAML and the systematic structure of SAML services, gives a description of this system and then achieves the implementation. Finally, it arrives at evaluation of the systems, and summative expectations of its exploitation and research.In view of the realization of this transmission scheme, our research conducted around the credibility of existing technology and the SAML protocol, aims to support Trusted Computing to SAML protocol for the transmission mechanism to achieve mutual authentication with the server terminal and TPM and SAML double-encrypted secure transmission protocol as well. Credibility in the certification process technology is herewith introduced, because the credibility of technology can guarantee the integrity of the terminal. Because the SAML protocol meets new access mode, such as wireless access, DSL access, etc., the introduction of the certification transmission SAML protocol does have a broader application and development of space technology. Meanwhile, the integration of SAML protocol and seamless technology to achieve credible authentication terminal transmission system is undoubtedly the key to this article.