The Application Of Web Services In Information System And The Research Of Its Security Mechanism

Now the networks play a more and more important role in the process of the enterprises informatization, which results in the advents of much more applications based on the networks. Furthermore, these applications are needed by more and more users. Among the earlest enterprise management information system, a majority of enterprises only established their own static websites (based on HTML etc.), which can't meet the needs of the users and themselves. So the enterprises start to open their data to clients, collaborator and suppliers in order to update data dynamicly according to the needs of the businesses. The enterprises also make the basic management and projects management electronic and informatized. This is the second stage, in which HTML, JSP, ASP and database are used. But the coupling among these methods is a little tighter. With the advent of the Web Services, because Web Services can make the independence of the platform, language and the issuer, Web Services not only can realize the loose integration of the enterprise application, but also can achieve dynamic integration that has good flexibility.The Web Services based on XML is feasible schemes to realize the modern enterprise information management. The application of Web Services will change the current development model and the application deployment scale. Web Services can encapsulate information, action, data presentation and business flow and don't need consider whatever system and device are used in an application. So enterprise can make the management information modularize, and can combine and integrate many kinds of Web Services to create dynamic enterprise application.This thesis put an emphasis on enterprise information management system based on Web Services, the security problem of the Web Services and its solution. Firstly, it introduces how to encapsulate the business functions of original system into Web Services. Secondly, it analysises the security requirements of Web Services and puts forward the specifications and the correlative techniques of the realizationof the Web Services. The thesis also discusses how to use WSE to develop safe Web Services, by which the workload of the developers can be reduced greatly. It is of practical importance.At last, the thesis introduces a case, which realizes the safe Web Services by using UserNameToken. The understanding about the safe application and the realization process of the safe application are specified. The usage of WSE and how to invoke the Web Services are introduced.