本文已被:浏览 1963次 下载 3097次
Received:December 11, 2013 Revised:January 14, 2014
Received:December 11, 2013 Revised:January 14, 2014
中文摘要: 典型单点登录技术基于Kerberos协议,票据存活期设置存在安全漏洞,同时多数单点登录技术仅适用于WEB环境.针对于此,提出一种新的认证模式,实现跨平台的单点登录系统.该系统以PKI为安全基础,使用定期报到方式解决票据和认证信息的时效性问题,在客户端采用Hook和BHO技术,由代理模块对登录认证进行代理.结果表明,该系统改进了票据存活期机制的不足,部署时不需应用程序开放开发接口,具有易部署、易扩展等特性.
Abstract:The typical single sign-on technologies are based on Kerberos protocol. There are vulnerabilities in the ticket's lift-time solution. And most of the single sign-on technologies are applied to Web-based application systems. According to these, a new mode of authentication is proposed. And a single sign-on system is designed and implemented. The system uses PKI as security infrastructure, uses a technique called regular check-in to solve the limitation of tickets and authentication information. The client agents of the sign-on and identity authentication use Hook API and BHO. The results show that the system can overcome the shortcoming of the lifetime, without requiring the existing infrastructure support development interface, and with advantages such as flexible deployment and expansion.
文章编号: 中图分类号: 文献标志码:
基金项目:
| Author Name | Affiliation |
| XU Yi | Department of Computer Science, Shantou Polytechnic, Shantou 515041, China |
| SHEN Ying-Shan | School of Computer, South China Normal University, Guanzhou 510631, China |
| Author Name | Affiliation |
| XU Yi | Department of Computer Science, Shantou Polytechnic, Shantou 515041, China |
| SHEN Ying-Shan | School of Computer, South China Normal University, Guanzhou 510631, China |
引用文本:
许逸,沈映珊.支持跨平台应用的单点登录系统.计算机系统应用,2014,23(8):73-78
XU Yi,SHEN Ying-Shan.Cross Platform Single Sign-on System.COMPUTER SYSTEMS APPLICATIONS,2014,23(8):73-78
许逸,沈映珊.支持跨平台应用的单点登录系统.计算机系统应用,2014,23(8):73-78
XU Yi,SHEN Ying-Shan.Cross Platform Single Sign-on System.COMPUTER SYSTEMS APPLICATIONS,2014,23(8):73-78
