| Web Services is a new distributed computing model. It has the characteristics ofloosen-coupling, cross-platform and cross-language. It can accelerate integration of differentkinds of business and enterprise systems, reduce cost and improve benefit. However, thesecurity problems that Web Services meet in practice have been restricting the developmentand application of Web Services. Only relying on traditionary secure solution, cannot meet thesecurity requirements of Web Services. Firstly, the concepts and security requirementsconcerned with Web Services are introduced. And then the technologies of network securitywhich exist now are introduced. In succession, the technologies concerned with Web Servicessecurity, such as XML encryption,XML signature,SOAP security,WS-Security, are analyzed.According to those technologies, a security model of Web Services is designed, which canensure the confidentiality,integrity,authentication,authorization and non-repudiation ofinformation in Web services communication. The implementation procedure of security modelin J2EE environment is also given in this thesis. At last, based on the analysis of securerequirement in reality, a management system of power plant spare part purchase is designed,and the security model proposed in this thesis is applied. The information security of WebServices is realized. |
PDF Full Text Request