| 快速面向信息服务的身份认证与授权访问 |
| |
| 引用本文: | 杨梅.快速面向信息服务的身份认证与授权访问[J].信息安全与通信保密,2009(3):50-52. |
| |
| 作者姓名: | 杨梅 |
| |
| 作者单位: | 中电科技集团公司第三十研究所,四川,成都,610041 |
| |
| 摘 要: | WebService技术具有容异特性,在3个方面支持互操作:水平(跨越端系统)、垂直(在不同的组织层次中)和时间(跟随系统发展路线)。论文探讨了使用身份联邦的安全策略,在信息获取、处理、分发到用户终端存储的各个阶段,采用基于角色的访问控制管理机制,信息授权技术实现用户只能获取系统分配权限范围内的安全服务。
|
| 关 键 词: | 安全性断言标记语言 可扩展访问控制标记语言 信任方(服务提供者)声明方(身份断言者)主体(与身份信息相关的用户) |
Information Service-oriented Identity Authentication and Authorized Access |
| |
| YANG Mei.Information Service-oriented Identity Authentication and Authorized Access[J].China Information Security,2009(3):50-52. |
| |
| Authors: | YANG Mei |
| |
| Institution: | YANG Mei (The 30th Institute of CETC, Chengdu Sichuan 610041, China) |
| |
| Abstract: | The WebService technology must accommodate heterogeneity, and support interoperability in three dimensions, horizontal(across peer systems), vertical (among different organizational levels) and temporal (along a system's evolutionary path).This paper discusses the security policy of identity commonwealth, when the information is obtained, processed, distributed to the users and stored, Role-Based Access Control mechanism is adopted. And information authorization is employed to realize that the users could only acquire the security service within the assigned privilege limits by the system manager. |
| |
| Keywords: | SAML XACML service provider identity provider subject |
| 本文献已被 维普 万方数据 等数据库收录! |
