CAJ | 학술논문

在比较现有的3种单点登录模型优缺点的基础上，分析跨域单点登录应有的基本功能，尝试建立一种云环境下的跨域单点登录系统。方案利用Web Service技术封装原有系统和构建身份映射功能，使原有系统在改动尽量小的情况下与新系统的认证实现无缝对接；通过部署身份认证系统群、跨域控制器、票据授权服务器、传输加密和用户信息库等措施实现云环境下跨域跨平台的集中认证。方案实施简单，安全性高，可扩展性好。
재비교현유적3충단점등록모형우결점적기출상，분석과역단점등록응유적기본공능，상시건립일충운배경하적과역단점등록계통。방안이용Web Service기술봉장원유계통화구건신빈영사공능，사원유계통재개동진량소적정황하여신계통적인증실현무봉대접；통과부서신빈인증계통군、과역공제기、표거수권복무기、전수가밀화용호신식고등조시실현운배경하과역과평태적집중인증。방안실시간단，안전성고，가확전성호。
On the basis of comparison between advantages and disadvantages of the three existing single sign?on models, basic functions of cross?domain single sign?on are analyzed. A try at establishing a cross?domain single sign?on system in cloud environment was made. A solution using Web Service technology to encapsulate the original system and construct identity map?ping function was design to make certification achieve seamless docking between the original system with least change and the new system. The solution achieves the centralized certification under cross?border and cross?platform in cloud environment through the deployment of authentication systems group,cross?domain controller,note authorized server,transmission encryp?tion and user information database. he solution has the characteristics of simple operation,high safety and good scalability.