The Research Of Web Service Authentication System Based On CPK

Web Services are self-description, platform independent and since it uses openstandards so different applications can communicate with each other. Web services asan emerging information technology, it puts forward a new kind of informationsystem common framework based on Internet, which allows users a remote call tosources among different information systems. These features cause industryincreasingly pay attention to Web services. With web services using increasing, moreand more threats and defects are discovered. Attackers can identify web servicevulnerabilities and use them to penetrate system, and in this way, attackers can stealthe sensitive information of consumer and reduce his privacy.To solve the issue of identity authentication of Web service system, this paperintroduces combined public key (CPK) algorithm into Web service authenticationmechanism, we increase a pair of assistant key matrixes based on the original CPKalgorithm, and uses the basic key matrix to calculate the keys of Web services, whileuses basic key matrix and assistant key matrix to calculate the keys of users invokingthe Web services. Furthermore, we redefine that CPK identity is the combinations ofuser identity and the validity date of the identity, so the verifier can direct extract thevalidity date from CPK identity, which makes the validation more convenient. In theSOAP header two custom elements are added: the user’s CPK identity and signature.Next, we apply the improved CPK into Web services system, to solve the problem ofWeb services security authentication. Theoretical analysis shows that our proposedkey schema in this algorithm can satisfy the characteristics of combined public key,and it has the same nature of the combined public key, Therefore, our algorithm cansolve the problem of large-scale certification, as well as can also defend from thetypical three collusion attacks existing in current CPK: choice collusion attack,random collusion attack and linear collusion attack, and the security performance hasbeen improved accordingly.This paper presents a combined public key algorithm based on Single-doublehybrid matrix, and redefines the CPK identity. We introduce improved CPK algorithminto the Web service system and solve the problem of identity authentication of Webservice system.