Single Sign-on Protocol for Web Services

Journal of South China University of Technology (Natural Science Edition) ›› 2005, Vol. 33 ›› Issue (2): 65-69.

Previous Articles Next Articles

Single Sign-on Protocol for Web Services

Zheng Dong-xi Tang Shao-hua Li Shao-fa

College ofComputer Science&Engineering,South China Univ.ofTech.,Guangzhou 510640,Guangdong,China

Received:2004-04-28 Online:2005-02-25 Published:2005-02-25
Contact: 郑东曦(1976-)，男，博士生，主要从事网络安全及Web服务方面的研究 E-mail:zhengdongxi@163.com
About author:郑东曦(1976-)，男，博士生，主要从事网络安全及Web服务方面的研究
Supported by:
国家自然科学基金资助项目(60273064)

Abstract

Abstract:

In order to securely authenticate users in a Web-service-based cross·application system,a protocol for the single sign·on in a cross·application system is proposed by using the single sign·on scheme.It is named Web Services Single Sign·on(WSSS).This protocol is based on the existing security specifications for Web services.The architecture,messages and flow of the protocol are then described in detail.Moreover,the description and a-nalysis of the proposed protocol are carried out by using the formalization method and a security analysis of the pro-tocol is made.The single sign-on services defined in WSSS can be applied to various Web applications to provide Web-service-based authentication.

Key words: Web service, single sign-on, security protocol

Zheng Dong-xi Tang Shao-hua Li Shao-fa. Single Sign-on Protocol for Web Services[J]. Journal of South China University of Technology (Natural Science Edition), 2005, 33(2): 65-69.

[1]	Zhang Qian Qi De-yu. Service-Oriented Collaborative Design Platform for Cloud Manufacturing [J]. Journal of South China University of Technology (Natural Science Edition), 2011, 39(12): 75-81.
[2]	Cao Yong-zhong Ding Qiu-lin Li Bin. Safety Mechanism of Dynamic Service Flow [J]. Journal of South China University of Technology (Natural Science Edition), 2009, 37(1): 140-144,150.
[3]	Xu Xin-wei Ding Qiu-lin. Dynamic Composite Web Services Based on QoS Context [J]. Journal of South China University of Technology (Natural Science Edition), 2007, 35(1): 106-111.
[4]	Li Dong Guo He-qing Han Tao. Authentication and Key Exchange Scheme Based on SRP-6 Protocol [J]. Journal of South China University of Technology (Natural Science Edition), 2007, 35(1): 94-98.
[5]	Chen Zhong Zheng Shi-xiong. Web Technology-Based Multi-Level Architecture of Intelligent Monitoring and Diagnosing System [J]. Journal of South China University of Technology (Natural Science Edition), 2005, 33(8): 11-15.
[6]	Su Jin-dian Guo He-qing Gao Ying. A Trust Model of Web Services Based on Subjective Logic [J]. Journal of South China University of Technology (Natural Science Edition), 2005, 33(10): 24-28,43.
[7]	Wang Tao Guo He-qing Yao Song-tao. A Modal Logic-Based Measurement Method of Security Protocol [J]. Journal of South China University of Technology(Natural Science Edition), 2004, 32(11): 37-42.
[8]	Lin Man- shan, Guo He- qing, Yin Jian- fei, et al. A Trust-based Peer-to-peer Single Sign -on Scheme Between Web -based Applications [J]. Journal of South China University of Technology(Natural Science Edition), 2004, 32(10): 56-61.

Single Sign-on Protocol for Web Services

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 8

Recommended Articles

Metrics

Comments