现代电子技术
現代電子技術
현대전자기술
MODERN ELECTRONICS TECHNIQUE
2015年
2期
49-51,55
,共4页
云环境%单点登录%用户认证%跨域%云服务
雲環境%單點登錄%用戶認證%跨域%雲服務
운배경%단점등록%용호인증%과역%운복무
cloud environment%SSO%user authentication%cross-domain%cloud service
在比较现有的3种单点登录模型优缺点的基础上,分析跨域单点登录应有的基本功能,尝试建立一种云环境下的跨域单点登录系统。方案利用Web Service技术封装原有系统和构建身份映射功能,使原有系统在改动尽量小的情况下与新系统的认证实现无缝对接;通过部署身份认证系统群、跨域控制器、票据授权服务器、传输加密和用户信息库等措施实现云环境下跨域跨平台的集中认证。方案实施简单,安全性高,可扩展性好。
在比較現有的3種單點登錄模型優缺點的基礎上,分析跨域單點登錄應有的基本功能,嘗試建立一種雲環境下的跨域單點登錄繫統。方案利用Web Service技術封裝原有繫統和構建身份映射功能,使原有繫統在改動儘量小的情況下與新繫統的認證實現無縫對接;通過部署身份認證繫統群、跨域控製器、票據授權服務器、傳輸加密和用戶信息庫等措施實現雲環境下跨域跨平檯的集中認證。方案實施簡單,安全性高,可擴展性好。
재비교현유적3충단점등록모형우결점적기출상,분석과역단점등록응유적기본공능,상시건립일충운배경하적과역단점등록계통。방안이용Web Service기술봉장원유계통화구건신빈영사공능,사원유계통재개동진량소적정황하여신계통적인증실현무봉대접;통과부서신빈인증계통군、과역공제기、표거수권복무기、전수가밀화용호신식고등조시실현운배경하과역과평태적집중인증。방안실시간단,안전성고,가확전성호。
On the basis of comparison between advantages and disadvantages of the three existing single sign?on models, basic functions of cross?domain single sign?on are analyzed. A try at establishing a cross?domain single sign?on system in cloud environment was made. A solution using Web Service technology to encapsulate the original system and construct identity map?ping function was design to make certification achieve seamless docking between the original system with least change and the new system. The solution achieves the centralized certification under cross?border and cross?platform in cloud environment through the deployment of authentication systems group,cross?domain controller,note authorized server,transmission encryp?tion and user information database. he solution has the characteristics of simple operation,high safety and good scalability.