Research And Application Of Cross-domain Mutual Trust Identity Authentication Based On Oauth2.0 Protocol

With the popularity and development of the Internet,providing various resources and services through the network has become a trend in all walks of life.Nowadays,each university has gradually established a mature comprehensive information platform,integrating various application systems within the school,and sharing resources efficiently and safely.Through the sharing of resources between universities using the mature comprehensive information platforms,we can make better use of higher education resources and improve the level of education.However,the frameworks and technologies which are used by different universities to establish integrated information platforms are different,it is difficult to unify.And the existing cross-school resource sharing platform is complex in structure and difficult to implement.In this case,how to use identity authentication technology to implement cross-school mutual trust identity authentication simply and efficiently has become a hot issue in current research.By analyzing the design framework and technology of the existing university comprehensive information platforms and cross-school resource sharing platforms,aiming at the problems such as complex structure and difficult deployment of these cross-school platforms,this paper uses Oauth2.0 protocol to improve the traditional intra-domain identity authentication mechanism and cross-domain identity authentication model from the perspective of simple and efficient development and deployment,resource access and authentication.Through the analysis of the relevant technical theories of intra-domain and cross-domain identity authentication,and the research of Oauth2.0 protocol and information encryption technology,this paper proposes a resource authentication model and a distributed cross-domain mutual trust authentication model based on Oauth2.0 protocol in the information application environment of universities.The two models use the combination of role-based field-level authorization and secondary authorization for identity authorization and the cross-domain model uses the authentication relay to realize one-time docking and multiple calls of the application system,which not only simplifies the access steps of the application system,but also ensures the independent integrity of the cross-domain authorization.In this paper,the security of the two models is analyzed and an improved security strategy is used.Encryption algorithm,multi-factor identity authentication and CSRF protection mechanism are adopted to ensure the security of data exchange within and across domains.According to the proposed resource authentication model and distributed cross-domain mutual trust authentication model,this paper designs and implements a simple,effective,safe and reliable cross-domain mutual trust alliance identity authentication platform based on Oauth2.0 protocol.This platform integrates the information systems between different universities to realize the intra-school and cross-school identity authentication.At the same time,different encryption technologies are used to ensure the security and reliability of data transmission across domains,thus realizing simple and efficient cross-school resource access and sharing.