| Web服务安全机制研究 |
| |
| 引用本文: | 杨涛,杨荣,刘锦德.Web服务安全机制研究[J].北京工业职业技术学院学报,2005,4(4):21-26. |
| |
| 作者姓名: | 杨涛 杨荣 刘锦德 |
| |
| 作者单位: | 电子科技大学计算机科学与工程学院,成都,610054;北京青年政治学院,北京,100102 |
| |
| 摘 要: | 作为一种面向服务的计算模式,Web服务具有松散耦合、与平台无关等优点,能简化跨组织应用的共享与集成,得到了快速发展和应用.但同时,Web服务的许多方面都面临着安全挑战.介绍了Web服务体系结构,分析了存在的安全问题,讨论了目前业界提出的安全机制,包括XML加密和签名,SAML,XACML,XKMS,WS-Security等,以及它们与传统安全技术的关系;最后提出了一种通过Security Authority实现跨安全域交互的安全模型.
|
| 关 键 词: | Web服务 安全 机制 |
| 文章编号: | 1671-6558(2005)01-21-06 |
| 收稿时间: | 2005-08-31 |
Research of Security Mechanism for Web Services |
| |
| Yang Tao,Yang Rong,Liu Jinde.Research of Security Mechanism for Web Services[J].Journal of beijing vocational & technical institute of industry,2005,4(4):21-26. |
| |
| Authors: | Yang Tao Yang Rong Liu Jinde |
| |
| Abstract: | As a service-oriented computing model, Web Services technology is loosely-coupled and platform-independent, and it simplifies the application integration between different organizations. At the same time, its inherent heterogeneity, dynamic and complexity bring many security issues. The paper introduces the Web Service structure as well as some common security threats that exist. It also presents the security mechanism widely used nowadays, including XML encryption and signature, SAML, XACML, XKMS and WS-Security. Finally a security model that supports cross-domain security interoperation by security authority is presented. |
| |
| Keywords: | Web Services security mechanism |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
