| 一种新型SOAP消息附件安全保障模型 |
| |
| 引用本文: | 崔晓玲,李磊,魏峻.一种新型SOAP消息附件安全保障模型[J].计算机科学,2007,34(4):243-249. |
| |
| 作者姓名: | 崔晓玲 李磊 魏峻 |
| |
| 作者单位: | 1. 中国科学院软件研究所软件工程技术中心,北京100080
2. 中国科学院软件研究所软件工程技术中心,北京100080;中国科学技术大学计算机科学技术系,合肥230026 |
| |
| 基金项目: | 国家高技术研究发展计划(863计划)
,
国家重点基础研究发展计划(973计划) |
| |
| 摘 要: | 随着Web服务的广泛应用和发展,提供安全保障能力是Web服务在商业应用中获得成功的关键因素。然而,目前还没有一种有效的方法对SOAP消息附件提供安全性支持。针对这一问题,本文提出了一种新型的SOAP附件安全保障模型,它可以在不改变客户端和服务器端内部实现的情况下,对附件进行加密和数字签名。在多中间节点的场景中,附件可以不经过任何中间节点从客户端直接发送到服务器,在减少附件被攻击可能性的同时提高了服务的执行效率。本模型在Web应用服务器上进行了原型实现,实验结果表明,该模型具有普遍性,可以高效地为企业提供附件安全保障。
|
| 关 键 词: | soap 附件 安全 |
A New Security Model for SOAP Attachments |
| |
| CUI Xiao-Ling,LI Lei,WEI Jun.A New Security Model for SOAP Attachments[J].Computer Science,2007,34(4):243-249. |
| |
| Authors: | CUI Xiao-Ling LI Lei WEI Jun |
| |
| Abstract: | With the abroad usage and development of Web Services, security plays a more and more important role in business. However, there is no effective method to secure SOAP attachments at present. This article proposes a novel security model for SOAP attachments, which can encrypt the attachments and provide digital signature without changing the implementation of client and server.In the multi-intermediaries scenario, the SOAP message will be transmitted as the original message path via intermediaries while the attachments are sent directly from client to server via no intermediary. This approach improves the performance of services and reduces the probability of the attachments' being attacked. A prototype of this security model is implemented on the Web application server and the experiment result shows the model can provide the security guarantee for enterprise applications. |
| |
| Keywords: | Soap Attachment Security |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
点击此处可从《计算机科学》下载全文 |
