| Web服务中身份认证与访问控制模型的研究 |
| |
| 引用本文: | 钟志伟,陈志刚.Web服务中身份认证与访问控制模型的研究[J].电脑与信息技术,2009,17(3):64-66. |
| |
| 作者姓名: | 钟志伟 陈志刚 |
| |
| 作者单位: | 中南大学信息科学与工程学院,长沙,410083 |
| |
| 摘 要: | Web服务分布式、异构的本质。使得对服务请求者进行身份认证和授权变得复杂,针对这些问题提出了一个基于SAML,XACML,RBAC等关键技术的身份认证与访问控制模型。该模型采用SAML辅件技术实现Web服务的单点登录;用XACML实现RBAC模型,简化授权管理,同时达到对资源的细粒度访问控制的目标;用扩展的SAML语法支持XACML信息的安全有效传输。
|
| 关 键 词: | Web服务 身份认证 基于角色访问控制 可扩展访问控制标记语言 安全断言标记语言 |
The Research on Identity Authentication and Access Control Model of Web Service |
| |
| ZHONG Zhi-wei,CHEN Zhi-gang.The Research on Identity Authentication and Access Control Model of Web Service[J].Computer and Information Technology,2009,17(3):64-66. |
| |
| Authors: | ZHONG Zhi-wei CHEN Zhi-gang |
| |
| Affiliation: | (School of Information Science and Engineering, Central South University, Changsha 410083, China) |
| |
| Abstract: | Web service's distributed, heterogeneous nature, made the service to those requesting for authentication and authorization complex. In response to these issues, the paper proposed an identity authentication and access control model based on the key technologies such as SAML, XACML, RBAC, and etc. The model used SAML artifact technology to realize single sign-on of Web services, XACML made RBAC model implemented, simplifyied the management of authorization, and achieved the goal of access control of fine-grained resource at the same time, extension of the SAML syntax to support the safe and effective transmission of XACML information. |
| |
| Keywords: | Web services identity authentication RBAC XACML SAML |
| 本文献已被 维普 万方数据 等数据库收录! |
|
