SOA环境中的跨域认证方案研究

doi:10.11959/j.issn.2096-109x.2016.00111

Abstract

Abstract:

For the network nowadays becoming more and more complex,the SOA environment has the properties of heterogeneous and multiple domain.A trust management scheme was proposed based on the fuzzy theory,and a cross-domain identity authentication in SOA was constructed by the combining of the trust management scheme with the credential transform service.During the authentication,a user’domain used the trust management scheme to guarantee its security,and the service provider’s domain used both the trust management and credential to ensure its security.Furthermore,the credential transform made users can access services in the domains whose security mechanism was different from the users’.It is shown that the proposed authentication scheme has superiority in both security and pervasive,and is suitable for the SOA environment.

Key words: SOA, cross-domain, identity authentication, trust management, fuzzy theory, credential transform

CLC Number:

TP309

Jing-jing GUO,Jian-feng MA,Xin-xin GUO,Tao ZHANG. Study of cross-domain identity authentication in SOA environment[J]. Chinese Journal of Network and Information Security, 2016, 2(11): 21-29.

Figures/Tables 5

References 18

[1]	[EB/OL]..
[2]	蔡希尧 . 信息系统的发展与创新[M]. 西安：西安电子科技大学出版社, 2011.
	CAI X Y . Development and innovations of information systems[M]. Xi’an: Xidian University PressPress, 2011.
[3]	YAO L , WANG L , KONG X W ,et al. An inter-domain authentication scheme for pervasive computing environment[J]. Computers and Mathematics with Applications, 2010,59(2): 811-821.
[4]	SINGH N , CHHABRA G , SINGH K P ,et al. A secure authentication scheme in multi-operator domain (SAMD) for wireless mesh network[C]// The International Conference on Data Engineering and Communication Technology. 2016: 343-357.
[5]	KHEDR W I , ABDALLA M I , ELSHEIKH A A.Enhanced inter-access service network handover authentication scheme for IEEE 802 . 16m network[J]. IET Information Security, 2015,9(6): 334-343.
[6]	YAN J , LU Y , LIU Y ,et al. Research on beidou-based inter-domain identity authentication for mobile object[C]// 2014 IEEE Workshop on Advanced Research and Technology in Industry Applications (WARTIA). 2014: 923-926.
[7]	Web service federation language (WS-Federation) version1.0[EB/OL]. .
[8]	Liberty alliance project. Liberty architecture overview v1.1[EB/OL]. .
[9]	OASIS. Security assertion markup language v2.0[S]. 2005.
[10]	RFC 1510. The kerberos network authentication service(V5)[S].
[11]	MELLO D E R , WANGHAM M S , SILVA DF J . Model for authentication credentials translation in service oriented architecture[J]. Transactions on Computational Sciences Journal, 2009,5430: 68-86.
[12]	CAHILL V , GRAY E , SEIGNEUR J M ,et al. Using trust for secure collaboration in uncertain environment[J]. Pervasive Computing,IEEE, 2003,2(1): 52-61.
[13]	KAMVAR S , SCHLOSSER M,GARCIA-MOLINA H . The eigentrust algorithm for reputation management in P2P networks[C]// The 12th International Conference on World Wide Web. 2003: 640-651.
[14]	BETH T , BORCHERDING M , KLEIN B . Valuation of trust in open networks[C]// The European Symposium on Research in Security (ESORICS). 1994: 3-18.
[15]	SONG S , HWANG K , MACWAN M . Fuzzy trust integration for security enforcement in grid computing[J]. Network and Parallel Computing, 2004,3222: 9-21.
[16]	ZADEH L A . 模糊集合、语言变量及模糊逻辑[M]. 北京: 科学出版社, 1982: 23-33.
	ZADEH L A . Linguistic variable and fuzzy logic[M]. Beijing: Science PressPress, 1982: 23-33.
[17]	ALFAREZ A R , HALLES S . A distributed trust model[C]// New Security Paradigms Workshop Langdale. 1997.
[18]	汪培庄, 李洪兴 . 模糊系统理论与模糊计算机[M]. 北京: 科学出版社, 1996: 219-243.
	WANG P Z , LI H X . Fuzzy system theory and fuzzy computer[M]. Beijing: Science PressPress, 1996: 219-243.

Metrics

Recommended 0

No Suggested Reading articles found!

Study of cross-domain identity authentication in SOA environment

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 5

References 18

Related Articles 15

Metrics

Recommended 0

[1]	Min XIAO, Faying MAO, Yonghong HUANG, Yunfei CAO. Anonymous trust management scheme of VANET based on attribute signature [J]. Chinese Journal of Network and Information Security, 2023, 9(2): 33-45.
[2]	Cong YI, Jun HU. Novel continuous identity authentication method based on mouse behavior [J]. Chinese Journal of Network and Information Security, 2022, 8(5): 179-188.
[3]	Jianlin NIU, Zhiyu REN, Xuehui DU. Cross-domain authentication scheme based on consortium blockchain [J]. Chinese Journal of Network and Information Security, 2022, 8(3): 123-133.
[4]	Guanqun YANG, Yin LIU, Hao XU, Hongwei XING, Jianhui ZHANG, Entang LI. Credible distributed identity authentication system of microgrid based on blockchain [J]. Chinese Journal of Network and Information Security, 2021, 7(6): 88-98.
[5]	Yueyang YE, Xinglan ZHANG. Research on anonymous identity authentication technology in Fabric [J]. Chinese Journal of Network and Information Security, 2021, 7(3): 134-140.
[6]	Tianyi ZHU, Fenghua LI, Lin CHENG, Yunchuan GUO. Research on cross-domain access control technology [J]. Chinese Journal of Network and Information Security, 2021, 7(1): 20-27.
[7]	Hao WANG,Tianhao WU,Konglin ZHU,Lin ZHANG. Anonymous vehicle authentication scheme based on blockchain technology in the intersection scenario [J]. Chinese Journal of Network and Information Security, 2020, 6(5): 27-35.
[8]	Sijie QIAN,Liquan CHEN,Shihui WANG. PKI cross-domain authentication scheme based on advanced PBFT algorithm [J]. Chinese Journal of Network and Information Security, 2020, 6(4): 37-44.
[9]	Rensheng WANG,Tianhao WU,Lin ZHANG,Konglin ZHU. Cooperative trajectory prediction system for intelligent and automated connected convoy based on blockchain [J]. Chinese Journal of Network and Information Security, 2020, 6(3): 78-87.
[10]	Kai LEI,Fangxing SHU,Lei HUANG,Qichao ZHANG. Research on cross-domain trustable blockchain based decentralized DNS architecture [J]. Chinese Journal of Network and Information Security, 2020, 6(2): 19-34.
[11]	Yingying CHEN,Feng ZHANG,Wenbao JIANG,Xu ZHOU. P2P network identity authentication mechanism based on trusted alliance [J]. Chinese Journal of Network and Information Security, 2020, 6(2): 77-86.
[12]	Shudi CHEN,Youwen ZHU. Shoulder-surfing resistant PIN-entry method [J]. Chinese Journal of Network and Information Security, 2019, 5(1): 87-93.
[13]	Qiuhan WU,Wei HU. Design of identity authentication agreement in mobile terminal based on SM2 algorithm and blockchain [J]. Chinese Journal of Network and Information Security, 2018, 4(9): 60-65.
[14]	Yongshan DING,Lixin LI,Zuohui LI. Certificate-based cross-domain authentication scheme with anonymity [J]. Chinese Journal of Network and Information Security, 2018, 4(5): 32-38.
[15]	Ren-ji HUANG,Xiao-ping WU,Hong-cheng LI. Identity authentication scheme based on identity-based encryption [J]. Chinese Journal of Network and Information Security, 2016, 2(6): 32-37.