关键词:单点登录; 安全声明标记语言; XML密钥管理规范; XML数字签名; XML加密; Web服务
Research and implementation of security SSO authentication model based on SAML and XKMS
CHEN Tian-yu1, XIE Dong-qing1,2, YANG Xiao-hong1, YANG Hai-tao1
(1.College of Software, Hunan University, Changsha 410082, China; 2.School of Computer Science & Educational Software, Guangzhou University, Guangzhou510006, China)
Abstract:For the security problem existing in the process of SSO which used Browser/Artifact mode, this paper designed a security SSO authentication model based on SAML and XKMS. It used a key management layer which combined traditional PKI with XKMS to provide the key management service, at the same time, this model applied XML digital signature technology and XML encryption technology to ensure the security of sending SAML statement message. Through the implementation on the platform of J2EE,the result proves that the security SSO model can be a very good solution to the security problem in the deli-very of SAML statement by Browser/Artifact mode. ......