| With the rapid development of network and information technology, variousapplication systems based on network platform have been widely used in producingand living fields. There exists repetitive authentication work when login the systems,which not only reduces the using efficiency of the systems, but also is detrimental tothe security of identity verification information. Single sign-on technology is one ofthe solutions to this kind of problem.Single sign-on is a technology which allow the users access any authorizedsystem with one-time identity authentication when login to multiple applicationsystems. With the development of the single sign-on technology, and the incensementof single sign-on applications based on SAML,the SAML has become a fact singlesign-on protocol standard. Firstly, The paper analyzes the classical Pull model andPush model of SAML single sign-on, and studies all the protocols of SAML. In viewof the shortcomings of SAML protocol in session management, the paper improvesthe single sign-on model by redefining the valid time of user session and proposing aunified session management mechanism. The improved model is no longer simplybased on the server session state but through whether the session of user and IDP istimeout. Thus avoiding the system’s re-certification process when user wants toswitch the application. Finally, based on the public resources trading platform, usingthe improved model analysis, design, and implements a single sign-on system.At present, the public resources trading platform has been put into use, and ofwhich the single sign-on system achieved the desired goal. |
PDF Full Text Request