Research On UDDI And Attack Effect Evaluation Based On Service Oriented Architecture

With the continuous innovation of technology,the service in all kinds of fields has emerged,making the service integration business become the mainstream trend.In this case,the SOA(Service Oriented Architecture)with good coupling and cross platform is generated,saving the system flexibility and interoperability issues and improving the service integration business.In the process of implementing the SOA architecture,as the best implementation method,Web Service includes the techniques of XML,SOAP,UDDI,WSDL and so on.Among them,UDDI service registration center which serves as the hub of SOA achieves the information exchange,enhancing the system of service publication,inquiry and integration well.However,the security issues of UDDI are becoming increasingly prominent,which have become an important reason for restricting the development of UDDI service registration center,thereby affecting the development of SOA.Therefore analyzing the mechanism and vulnerability of UDDI and estimating the attack system are of great significance.Based on characteristics and structure of SOA,Web Service as the best way to implement SOA is expounded,the mainly XML,SOAP,UDDI,and WSDL technology are analysed and the standard of UDDI technology and logic structure are selective analysed.A centralized UDDI and distributed UDDI system model based on Web Service are designed from three aspects: the ideology,structure and interaction,and the identity authentication,service release and service inquiry of the allegation service are implemented.Because of the vulnerability of UDDI,the system is vulnerable to attack,then the effectiveness of the system is needed to evaluate,and the evaluation process is described in detail.Combined with the weight determination method and two kinds of evaluation methods,the evaluation model based on AHP and fuzzy comprehensive evaluation method,the evaluation model based on AHP and gray comprehensive evaluation method,the evaluation model based on entropy weighting method and fuzzy comprehensive evaluation method,the evaluation model based on entropy weight method and gray comprehensive evaluation method,the evaluation model based on comprehensive weighting method and fuzzy comprehensive evaluation method and the evaluation model based on comprehensive weighting method and gray comprehensive evaluation method are finally established.Based on the UDDI system,three kinds of denial-of-service attack classes are selected for UDDI system,according to the performance and function of the attack of UDDI system changes,the targeted effect evaluation index is established.The data acquisition and calculation has been conducted with the experimental data,to verify the six evaluation models,at the same time the validity and stability of the evaluation model are to verify.