| 基于SAML2的单点登录服务器FAAS的设计与实现 |
| |
| 引用本文: | 何绍建,秦晓,何建波.基于SAML2的单点登录服务器FAAS的设计与实现[J].计算机工程与设计,2008,29(22). |
| |
| 作者姓名: | 何绍建 秦晓 何建波 |
| |
| 作者单位: | 中国科学院软件研究所,北京,100080;中国科学院研究生院,北京,100049 |
| |
| 摘 要: | 单点登录是实现集中身份认证和数据统一管理的一种访问控制方法,它能够解决分布式系统的多重认证问题.在对单点登录以及安全断言标记语言(SAME)分析的基础上,设计和实现了基于SAML2的单点登录服务器FAAS(联邦认证授权服务器),并成功用于某上市企业ERP开发集成项目中.该设计的重点是SAML2的协议实现和FAAS的架构.
|
| 关 键 词: | 单点登录 面向服务的架构 安全断言标记语言 集中认证授权服务器 身份提供者 服务提供者 |
Design and implementation of SAML2-based single sign-on server FAAS |
| |
| HE Shao-jian,QIN Xiao,HE Jian-bo.Design and implementation of SAML2-based single sign-on server FAAS[J].Computer Engineering and Design,2008,29(22). |
| |
| Authors: | HE Shao-jian QIN Xiao HE Jian-bo |
| |
| Affiliation: | HE Shao-jian1,2,QIN Xiao1,HE Jian-bo1,2(1.Institute of Software,Chinese Academy of Sciences,Beijing 100080,China,2.Graduate University,Beijing 100049,China) |
| |
| Abstract: | Single sign-on(SSO) is an access control method which could solve the multiple authentications problem in distributed systems and also make central identity management.Firstly,SSO and security assertion markup language(SAML) concepts is analyzed and then the design and implementation of the SAML2 based federated authentication and authority server(FAAS) is described.Now the FAAS is successfully applied to a top-list company's ERP system.The implementation of stack of SAML2 protocols and the archi-tecture of... |
| |
| Keywords: | SSO SOA SAML FAAS IdP SP |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
