A Single Sign-On Scheme for Cross Domain Web Applications Based on SOA
The SSO (Single Sign On) is one of the most popular enterprise business integrated solutions. The SSO means that users could only login once to access all the mutual trusted applications. The existing SSO schemes lead into much modification to original system when adding SSO to new application, which means high coupling relation between applications. In this paper, we proposed a SSO scheme based on SOA which would make business system, authentication proxy, and authentication authority management as separate services. The proposed scheme uses enterprise service bus (ESB) to accomplish information interaction, ticket transmission and implement cross domain SSO. The login authentication of business system cloud use authentication proxy to realize different forms of authentication. The scheme is based on Pkl/PMI, which achieves strong identity authority and flexible permission management. The result shows our scheme is a high secure, broad perspective solution to the problem of high coupling in SSO.
single sign-on SOA cross-dontain authentication
Enze He Qiaoyan Wen
State Key Laboratory of Networking and Switching Technology Beijing University of Posts and Telecommunications Beijing, China
国际会议
北京
英文
543-547
2011-08-24(万方平台首次上网日期,不代表论文的发表时间)