| Web服务安全体系结构研究 |
| |
| 引用本文: | 龚豫鄂,方家骐. Web服务安全体系结构研究[J]. 计算机工程与设计, 2006, 27(13): 2341-2344 |
| |
| 作者姓名: | 龚豫鄂 方家骐 |
| |
| 作者单位: | 华北计算技术研究所,北京,100083;华北计算技术研究所,北京,100083 |
| |
| 基金项目: | 中国电子科技集团公司资助项目 |
| |
| 摘 要: | 随着Web服务的普及,构建解决其各种安全问题的安全体系结构研究变得非常有意义。在分析了Web服务的基本组件、协议以及Web服务所需要的安全保证之后,提出了一种分层的安全体系结构。该体系结构充分利用了现有的安全技术和设施,综合了传输层次和SOAP层次上的安全措施来保证Web服务的安全。另外还对各层次上应采取的措施和应达到的安全性要求做了详细的分析。
|
| 关 键 词: | Web服务 HTTP基本身份验证 SSL SOAP数字签名 SOAP加密 |
| 文章编号: | 1000-7024(2006)13-2341-04 |
| 收稿时间: | 2005-05-05 |
| 修稿时间: | 2005-05-05 |
Study of web services security architecture |
| |
| GONG Yu-e,FANG Jia-qi. Study of web services security architecture[J]. Computer Engineering and Design, 2006, 27(13): 2341-2344 |
| |
| Authors: | GONG Yu-e FANG Jia-qi |
| |
| Affiliation: | North China Institute of Computing Technology, Beijing 100083, China |
| |
| Abstract: | With the popularization of web services, it becomes very meaningful to research into the building of the security architecture that can solve various security problems of the web service. After the basic components and protocols of web services are analyzed, a kind of layered security system architecture is presented. This system architecture makes full use of existing security technologies and facilities, and integrates security measures both on transport layer and SOAP layer to ensure the security of web services. The measures that should be taken on and the security that should be achieved are also analyzed in detail. |
| |
| Keywords: | SSL |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
