首页 | 本学科首页   官方微博 | 高级检索  
     

一种Web应用环境下的联合单点登录模型
引用本文:张昌利,吴健,胡正国. 一种Web应用环境下的联合单点登录模型[J]. 西北工业大学学报, 2006, 24(2): 214-218
作者姓名:张昌利  吴健  胡正国
作者单位:西北工业大学,计算机学院,陕西,西安,710072
摘    要:单点登录是企业之间跨域分布式计算的一项关键技术,使用户可以无缝地访问多个服务器而无需多次认证。K erberos和SAM L是当前2种主流的单点登录模型,二者各有其优缺点。文中通过对这2种模型进行比较和融合,取长补短,提出了一种新的W eb应用环境下的联合单点登录模型。首先,对模型结构进行了分析,并重点分析了单点登录服务器、票据模型2个主要组成部分;然后,对模型所具有的特点如统一管理和控制、双向认证、安全和轻量级票据等进行了阐述;最后,针对用户登录、站点间跳转2种典型情况,探讨了单点登录的实施过程。

关 键 词:单点登录  Kerberos  SAML  票据
文章编号:1000-2758(2006)02-0214-05
收稿时间:2005-06-02
修稿时间:2005-06-02

A Better Single Sign-On Model in Web Application Environment
Zhang Changli,Wu Jian,Hu Zhengguo. A Better Single Sign-On Model in Web Application Environment[J]. Journal of Northwestern Polytechnical University, 2006, 24(2): 214-218
Authors:Zhang Changli  Wu Jian  Hu Zhengguo
Abstract:Purpose.There exist already two leading SSO(Single Sign-On) models: Kerberos and SAML(Security Assertion Markup Language).We synthesize these two leading models and thus present a better one.In the full paper,we explain in much detail our synthesized or federated model;here we just list the three topics discussed in the detailed explanation:(1) leading SSO models,whose subtopics are Kerberos model and SAML model;(2) federated SSO model in web application environment;the subtopics are SSO server,ticket model,and characteristics of federated model;(3) SSO process,whose subtopics are user logging-in process,which consists of seven steps,and the process of jumping between sites,which consists of five steps.The synthesized or federated model has the following three characteristics:(1) unified management and control;(2) bi-direction authentication;(3
Keywords:SSO(Single Sign-On)  Kerberos  SAML(Security Assertion Markup Language)  ticket  
本文献已被 CNKI 维普 万方数据 等数据库收录!
设为首页 | 免责声明 | 关于勤云 | 加入收藏

Copyright©北京勤云科技发展有限公司  京ICP备09084417号