摘要
Web服务是一种崭新的分布式计算模式,是下一代电子商务的框架。但Web服务能否顺利发展的关键是其安全问题,对Web服务请求者的身份进行认证是解决安全问题的重要途径。为克服HTTP协议的无状态性,在对基于cookie的认证机制的实现原理和过程进行分析和研究的基础上,提出了一种基于Cookie的认证系统,详细介绍了其工作流程。该认证系统具备单点登录和适应所有浏览器等特点,比较适合于Web服务在单域内的安全认证。
Web Services is a new distributed computing mode and is the framework of next generation e-commerce. However, the key to develop successfully web services is its security issue, and identity authentication for web services requestor is an important measure to resolve security issues. By analyzing and researching cookie-based authentication mechanism and its implementation process, a cookie-based authentication system for web services was presented, and its workflow was discussed in detaiL This authentication system has some characteristics, such as single sign-on, being fit for all web browsers and so on. The secure authentication for web services in a single security domain was implemented.
出处
《计算机工程与设计》
CSCD
北大核心
2006年第5期762-764,881,共4页
Computer Engineering and Design
基金
湖北省自然科学基金项目(2004ABA055)
