Design And Implementation Of The Unified AAAA Services Based On SaaS Cloud Services

With the continuous development and maturity of the software industry, and the emerge of cloud computing, the software pattern of SaaS cloud services is outcome inevitability. Now the SaaS cloud services mode has a good progress, it has incomparable advantages, such as multi-tenant, configurability, scalability and so on. But the users have been worried about the security. And it is a key problem that SaaS cloud services need to be focused and overcome.Taking SaaS security of cloud services as a research topic, this thesis deeply studies the security authentication services, access authorization, security audit and accounting mode, ie AAAA services, based on the SaaS cloud services. The unified authentication and authorization SaaS cloud services provides the unified management of user information and authorization to access. Each software does not need a separate information management, thus the management oversight and security vulnerabilities are avoided. Security audit provides user authentication and other security-related actions audit services that can effectively judge the invasion of risk behaviors and generate reports. Accounting service provides a diversified alternative accounting policies in accordance with classification, and this is the base for users to use SaaS cloud services.In this thesis, the SOAP-based Web Service technology is used to provide the unified AAAA service based on SaaS. Service interface is output in the form of XML standard interface, which is loosely coupled and cross-platform. The overall architecture of SaaS cloud services platform is firstly designed, and then each part of the AAAA Services is modularly designed.Based on the research about the security related standards--SAML and XACML standard, the single sign-on and access authorization is completed, and the security login protocol is innovatively designed. Reference to the cloud computing distributed ideas, the security behavior audit method is analyzed and designed. According to the "on-demand use and purchase", a feature of SaaS cloud services providing software services, the multi-level subscription-based accounting services are designed. Finally, according to the design thinking of authentication, authorization, auditing, and accounting services, combined with related technology, the AAAA services and the corresponding XML interface are realized. The performance of the unified AAAA services Based on the SaaS cloud services is verified by experimentation.