| 基于SAML和X.509的跨安全域信任关系构建机制 |
| |
| 引用本文: | 陈洪涛,丁建立,齐鸣.基于SAML和X.509的跨安全域信任关系构建机制[J].计算机安全,2010(1):28-31. |
| |
| 作者姓名: | 陈洪涛 丁建立 齐鸣 |
| |
| 作者单位: | 1. 中国民航大学,计算机学院,天津,300300;中国民航局空管局信息办,北京,100022
2. 中国民航大学,计算机学院,天津,300300 |
| |
| 基金项目: | 国家863重点课题(2006AA12A106);;国家自然科学基金(60879015)资助 |
| |
| 摘 要: | 在对企业的各个应用系统集成到门户的过程中,信任关系的构建是解决不同安全域之间统一身份认证的有效方法。在分析和研究统一身份认证关键技术SAML和X.509数字证书特点的基础上,提出了跨不同安全域的信任关系构建机制。并从保证网络安全的角度,对该机制进行了深入探讨和改进。最后运用基于SAML规范的开源实现openSAML进行了简单的测试和验证。
|
| 关 键 词: | 统一身份认证 SAML技术 X.509数字证书 跨安全域 信任关系构建 |
Design Cross-domain Security Trust Relationship on SAML and X.509 |
| |
| CHEN Hong-tao,DING Jian-li,QI Ming.Design Cross-domain Security Trust Relationship on SAML and X.509[J].Network & Computer Security,2010(1):28-31. |
| |
| Authors: | CHEN Hong-tao DING Jian-li QI Ming |
| |
| Affiliation: | 1.Civil Aviation University of China;Tianjin 300300;China;2.ATMB.CAAC;Beijing 100022;China |
| |
| Abstract: | In the process of integrating enterprise application systems,the architecture of trust relationship is an effective solution to solve unified identity authentication between the different security domains.On the basis of analyzing and researching the features of the key technology of the unified identity authentication,SAML and X.509 digital certificate,this paper states the architecture mechanism of the trust relationship of cross-domain security.And in order to ensure network security,this paper researche... |
| |
| Keywords: | SAML X 509 digital certificate cross-domain security the architecture of trust relationship |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
