CAJ | 학술논문

针对云服务中众多服务资源的安全有效登录问题,提出跨安全域的联合身份认证。首先,为保障用户身份信息的安全性,采用SAML2.0技术规范,建立安全域实现不同安全域下用户身份的鉴别和信息的交换;其次,为保障信息交换的安全性,使用SSL安全链路进行通信,以确保信息的完整性和机密性。该设计实现了对云服务中用户登录信息跨域的有效验证,提高了资源访问的安全性。
침대운복무중음다복무자원적안전유효등록문제,제출과안전역적연합신빈인증。수선,위보장용호신빈신식적안전성,채용SAML2.0기술규범,건립안전역실현불동안전역하용호신빈적감별화신식적교환;기차,위보장신식교환적안전성,사용SSL안전련로진행통신,이학보신식적완정성화궤밀성。해설계실현료대운복무중용호등록신식과역적유효험증,제고료자원방문적안전성。
For the secure and effective login on many service resources in the cloud,this paper proposes a federation identity authentication across security domains,and in order to protect user identity information,SAML 2.0 technical specifications is adopted,thus to establish security domain and realize the user identity authentication and information exchange in among the different domains. Then,in order to protect the security of information exchange,SSL secure link is used to transfer information and thus ensure information integrity and privacy. The solution can effectively verify user's login information across different domains and improve the security of resources-access in the cloud.