| While web services have been used widely, they still face many security challenges inthe reliability, confidentiality and data nonrepudiation. It is extremely urgent to solve someimportant security problems such as ensuring authorized access to web resources, ensuringthe security of network data transmission, preventing the system from illegal web attacks,and resolving conflicts between system security and performance.Web services-based virtual experiment platform security is mainly for web servicessecurity issues, by improving and extending the Spring Security framework, to ensure thesecure access to web resources in the virtual experimental system from three aspects thatare identity authentication, authorized access and secure transmission. In the identityauthentication, the highly safe and recognized authentication method U-Key is used, and byimproving the authentication and authorization of Spring Security, the authentication basedon U-Key and authorization of Spring Security are integrated. For the aspect of authorizedaccess, the integration of Spring Security and J2EE Architecture ensure authorized access toweb resources, ensuring high-speed query by one-time loading permissions in buffermemory, and achieving three levels security access control of URL, method and domainobject. Moreover, the Spring Security’s ACL mechanism is improved and the idea of AOPis used to achieve access control of domain object. For secure data transmission, theimprovements of the XML encryption and XML decryption algorithm have been used toenhance the security and speed of data transmission, by means of mixing RSA and DESalgorithm. What’s more, by extending the secure interceptor in the Spring Security, a seriesof security filter are used to block illegal access requests, so as to prevent attacks andreduce the security holes of system. This security mechanism is designed to provide userswith a safe and stable virtual experiment teaching environment.In this thesis, the above secure mechanism has been realized combined with websecurity features of virtual experiment platform. The experimental results shows that thesystem security has been improved to ensure authorized access to web service and thesecurity of data transmission, and all the problems with high severity in the system havebeen solved and medium-low severe problems degreased dramatically. |
PDF Full Text Request