ASP平台安全认证技术的研究与实现  被引量:7

Research and implementation of security authentication technology on ASP platform

在线阅读下载全文

作  者:袁晓舟[1] 范菲雅[1] 马登哲[1] 

机构地区:[1]上海交通大学计算机集成制造研究所,上海200030

出  处:《计算机集成制造系统》2005年第12期1738-1742,共5页Computer Integrated Manufacturing Systems

基  金:国家863/CIMS主题资助项目(2003AA414012)~~

摘  要:为满足应用服务提供商平台集成多种异构应用系统的实际需求,提出了一种采用统一安全认证技术进行轻量级应用集成的解决方案。该方案采用目录服务数据库,统一存储用户身份和权限信息,使用会话令牌保证用户身份的持久有效性,通过策略代理保护应用服务资源的安全,并对用户的访问进行统一授权和控制。为实现用户在平台和应用系统之间的单点登录,提出了令牌和代理相结合进行身份信息传递与验证的实现方案,尤其是解决了跨域单点登录的难题。该方案已成功应用于上海电信理想商务应用服务提供商平台。To satisfy requirements from Application Service Providers" (ASPs) on integrating different application systems into ASP platform, a light--weighted integration method was brought forward based on the unified security authentication technology. According to the method, all users" identification and authorization information were stored in a Light--weight Directory Access Protocol (LDAP) based directory database, tokens were set to keep user session's validity, policy agents were installed to protect all the application resources, and user's access to these resources were granted and controlled centrally. Combining the use of tokens and policy agents, the problem of Single Sign On (SSO) among platforms and applications, especially SSO among cross--domains, could be solved. Finally, this method has been successfully implemented in, "Shanghai Telecom Ideal Biz ASP Platform" Project.

关 键 词:应用服务提供商 认证 授权 单点登录 访问控制 目录服务数据库 

分 类 号:TH166[机械工程—机械制造及自动化]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象