摘要
综合应用了Web Service安全标准,混合使用了浏览器到服务器和重写基本任务模块两种应用模式,利用插件服务方法设计了基于Web Services的安全业务体系结构原型,实现了加密、数字签名、授权和验证等方面的安全性。系统采用基于角色的访问控制RBAC实现访问控制策略,基于SAML标准实现认证和授权,利用XML加密和XML数字签名实现SOAP消息和XML文档的加密与签名。
By the aid of plug-in service, a security service infrastructure prototype is designed based on Web service via exiting XML-based security standards in two application patterns, the browser to server pattern and the rewriting essential task module pattern, which facilitates the security in the aspects of encryption, digital signature, authorization and authentication. In the prototype system, role based access control (RBAC) is used to realize security policies, authorization and authentication functions are designed mainly on security assertion markup language (SAML), XML encryption and signature facilitate the basis security capabilities in SOAP message and XML documents.
出处
《计算机工程》
EI
CAS
CSCD
北大核心
2005年第20期146-148,158,共4页
Computer Engineering
基金
国家自然科学基金资助项目(90304006)