期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于Axis的Web服务身份验证策略管理 被引量:2

Management of Web Service Identity Policy Based on Axis
下载PDF
导出
摘要 Web服务身份验证策略是Web服务安全的重要组成部分。针对当前Web服务身份验证策略管理、部署中策略交互协调的问题,提出根据客户端安全级别进行Web服务身份验证策略管理,同时提出方法以动态协调当前服务策略。验证策略查询服务作为策略选择的核心部分,为客户端和服务器端提供策略查询以实现动态调用相应的策略。根据这一方法,基于J2EE的相关技术,实现在Axis上的验证策略管理。并且支持动态策略的部署,增加了系统的灵活性和扩展性。 The security identity policy of Web service is an important part of Web service security. This paper makes a point of the disadvantage of correspondence in the management and deployment of Web services security identity policy at present. It advances to apply different policies of Web service according to the secure level of the client and the method to correspond the policy deployment dynamically. As the core of the design, the identity policy query service helps the server and client to query and deploy dynamically the relevant policy. According to the method, the paper realizes the identity policy management on the axis based on J2EE technology. And it helps to support the policy dynamic deployment to improve flexibility and expansibility.
作者 任魁 王普 李亚芬
机构地区 北京工业大学电子信息与控制工程学院
出处 《现代电子技术》 2008年第24期122-126,共5页 Modern Electronics Technique
基金 北京市自然科学基金资助项目(4052010)
关键词 WEB服务 身份验证 策略选择 AXIS Web service identity, policy choise Axis
分类号 TP393 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献11

  • 1Chen Zhikui. A Privacy Enabled Service Authorization Based on a User - centric Virtual Identity Management System [A]. In Communications and Networking in China, 2007. CHINACOM'07. Second International Conference on, IEEE [C]. 2007:423- 427. 被引量:1
  • 2Karthikeyan Bhargavan, C' edric Fournet, Andrew D Gordon. Verifying Policy- Based Security for Web Services [A]. In Proceedings of the 11th ACM Conference on Computer and Communications Security, ACM [C]. 2004:268 -277. 被引量:1
  • 3Karthikeyan Bhargavan, C'edric Fournet, Andrew D Gordon,et al. An Advisor for Web Services Security Policies [A]. In Proceedings of the 2005 Workshop on Secure Web Services,ACM[C]. 2005 : 1 - 9 . 被引量:1
  • 4Anthony Nadalin, Chris Kaler, Ronald Monzillo. Web Services Security: SOAP Message Security 1.1 [EB/OL]. OASIS Standard Specification, Feb. 2006. http ://docs. oasis-open. org/wss/v1.1. 被引量:1
  • 5Nils Gruschka, Norbert Luttenberger,Ralph Herkenhoner. Event - based SOAP Message Validation for WS-Security Policy-Enriched Web Services [A]. In Proceedings of the 2006 International Conference on Semantic Web & Web Services, IEEE[C]. 2006: 80 - 86. 被引量:1
  • 6Nils Gruschka, Meiko Jensen, Torben Dziuk. Event-based Application of WS- SecurityPolicy on SOAP Messages [A]. In Proceedings of the 2007 ACM Workshop on Secure Web Services, ACM[C]. 2007 : 1 - 8. 被引量:1
  • 7The Apache Software Foundation. Axis Architecture Guide Version 1. 2 [EB/OL]. http://ws. apache. org/axis/java/architecture-guide. html. 被引量:1
  • 8Eve Maler, Prateek Mishra, Rob Philpott. Assertions and Protocol for the OASIS Security Assertion Markup Language [EB/OL]. OASIS Standard, Sep. 2003. http://www. oasis-open. org/committees/documents. php? wg_abbrev = security. 被引量:1
  • 9李馨 谢长生 肖亮.网络存储中信任协商策略发布方法研究.计算机科学,2007,34(11):58-60. 被引量:1
  • 10Adam J Lee,Jodie P Boyer, Lars E Olson, et al. Defeasible Security Policy Composition for Web Services [A]. In Proceedings of the Fourth ACM Workshop on Formal Methods in Security,ACM[C]. 2006:45 - 54. 被引量:1

二级参考文献4

共引文献3

同被引文献17

  • 1汪丽才.基于Axis和WSS4J实现SOAP消息安全[J].西南科技大学学报,2006,21(4):71-75. 被引量:2
  • 2王跟成,罗省贤.一种基于AXIS的Web服务安全模型设计及实现[J].电脑与电信,2006(10):25-31. 被引量:1
  • 3乔波.Web Service安全技术研究[J].信息安全与通信保密,2007,29(8):139-141. 被引量:6
  • 4OGC. Web Processing Service: Version [ 1. 0. 01][ EB/ OL] ( 2007-06-08 ) [ 2009-12-15 ] . http: // www. opengeospatial. org/standards/wps. 被引量:1
  • 5OGC. GeoXACML Implementation Specification: Version [ 1.0] [EB/OL] . (2008-02-01) [2009-12-15] . http: //www. opengeospatial, org/standards/wps. 被引量:1
  • 6OGC. Security DWG [ EB/OL] [2009-12-15] . http: //www. opengeospatial, org/projects/groups/sccuri- tydwg. 被引量:1
  • 7Stollberg, Beate; Zipf, Alexander. OGC Web processing service interface for Web service orchestration aggregating geo-processing services in a bomb threat sccnarie [ C ] //Web and Wireless Geographical Information Systems-7th International Symposium (W2G1S 2007 ) . Cardiff: Springer Verlag, 2007: 239-25l. 被引量:1
  • 8Min Min, Liping Di, Genong Yu, et al. Augmcating the OGC WEB processing service with message-based asynchronous notification [ C ] //IEEE International Geoscience and Remote Sensing Symposium (1GARSS) . Boston: Institute of Electrical and Electronics Engineers Inc. , 2008: II1337- II 1340. 被引量:1
  • 9LIU Nian, ZHANG Jianhua, and LIU Wenxia. A Security Mechanism of Web Services-based Communication for Wind Power Plants [ C ] //IEEE Power and Energy Society 2008 General Meeting: Conversion and Dclivery of Electrical Energy in the 21st Century. Pittsburgh, PA: IEEE Computer Society, 2008 : 1-7. 被引量:1
  • 10WSO2. The Insider's Guide to Apache Rampart/C and OMXML Security [ EB/OL ] . ( 2007-06-17 ) [ 2009- 12-15 ] . http : //wso2. org/library/1815. 被引量:1

引证文献2

二级引证文献1

现代电子技术
2008年 第24期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部