| 基于WS-Security构筑安全的SOAP消息调用 |
| |
| 引用本文: | 王凡,李勇,朗宝平,李程旭.基于WS-Security构筑安全的SOAP消息调用[J].计算机应用,2004,24(4):121-123,126. |
| |
| 作者姓名: | 王凡 李勇 朗宝平 李程旭 |
| |
| 作者单位: | 大连理工大学,计算机系,辽宁,大连,116024 |
| |
| 摘 要: | 介绍了Web—Security框架以及Web Service安全体系,通过一个简化的电子商务场景,详细展示了如何使用WS—Security规范,实现安全的SOAP消息调用。指出了使用WS—Security时,防范重传攻击的各种措施,并提出了一个简化的挑战响应模型。最后介绍了WS—Security的实现和开发工具。
|
| 关 键 词: | Web服务安全 Web服务 简单对象访问协议 安全 重传攻击 |
| 文章编号: | 1001-9081(2004)04-0121-03 |
Securing SOAP Message Exchange with WS-Security |
| |
| WANG Fan,LI Yong,LANG Bao-ping,LI Cheng-xu.Securing SOAP Message Exchange with WS-Security[J].journal of Computer Applications,2004,24(4):121-123,126. |
| |
| Authors: | WANG Fan LI Yong LANG Bao-ping LI Cheng-xu |
| |
| Abstract: | This paper first introduces WS-Security specification and Web service security architecture. Then it details how to secure SOAP message exchange with WS-Security in a simplified e-commerce scenario. This paper also discusses some possible security problems with WS-Security,including replaying attacks,and gives a simple challenge-response model. Finally,it introduces the implementations and development kits of WS-Security. |
| |
| Keywords: | WS-Security Web service SOAP security replay attack |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
