| Service Oriented Architecture has developed rapidly in various fields because itsfeature of loose coupling and resource sharing can be well adapted to the requirementsof distributed and cross-platform. While the security of SOA has been the majorproblems impeding its development, as the growth of the network, there are more andmore services in the network. For improve the user s efficiency and reduce theburden on managers, there is a growing demand for the Single Sign-On(SSO) and thesafe and effective identity management.This paper conmes from The National Defense Pre-Research Foundation of China,and it mainly deals with the identity authentication in SOA environment and SSO.Based on the analysis of information security and web services security-relatedtechnologies, this paper analyses and summarizes the existing authentication and singlesign-on technology. The Browser/Post and Browser/Artifact mode of theimplementation of SAML SSO and the difference between SOAP gateway basedauthentication and authorization framework and Non-gateway SSO model are deeplydiscussed and analyzed. Based on the analysis above, a getaway-based SSO modelwhich support cross-domain is proposed. Then we take the security about SSOframework into consideration, introduce the corresponding methods into the model,and finally design and implement the whole mechanism.Finally, tests on the mechanism implemented are carried out, summary of thepaper and further study direction are proposed. |
PDF Full Text Request