摘要
采用Web Service技术,以TOMCAT为平台构建了一个包含服务提供者、服务使用者及服务注册中心的SOA原型系统。基于BLP模型提出了一种SOA架构下的强制访问控制模型,使用多级安全策略,结合XML加密/解密、SOAP扩展等安全技术,提出并设计了客户端安全代理和XML安全代理网关两个功能模块,将系统的控制点前移,对服务资源及使用者进行细粒度的访问控制,能够很好地满足SOA的安全特性。
Using web service technology,taking TOMCAT as a platform,a SOA prototype system is created,which contains service provider,service users and service registry.Based on the BLP model,a mandatory access control model is designed under the SOA,and the policy of multilevel security is used.Combined with the technologies of security such as XML encryption/decryption and SOAP expansion,client security agent module and XML security agent gateway module is proposed and designed.The system's control point is put forward,and the access control is done to the service resources and users.The architecture can fulfill the character of SOA security perfectly.
出处
《计算机工程与设计》
CSCD
北大核心
2011年第12期3983-3988,共6页
Computer Engineering and Design
