| some problems with security on the Internet.To solve the security problems with the transport of message,a trusted security mechanism should be setup and maintenance.Web Service described as Web APIs that can be accessed over a network in XML format which can describe any other kind of data, as well, the the data in XML can run though the Internet more easier between the different domains and machines.During the transport through SOAP protocol which can be seen as the foundation of one of the parts of the web service,the traditional security solutions or the ordinary firewalls do not have enought ability to fix security problems led by Web serive itself.Owning to such reasons, an end-to-end message protection method should be applied instead of peer-to-peer protections used to applied in transport layer.In the process of message protection,take full advantage of exist PKI infrastructure,the specification of WS-security which proposed by OASIS,defines a security token system that a set of claims used to prove the identity between clients and servers to extend the SOAP message,it made the message signature an encryption possible in the transport.In this thesis, we will give SOAP protocol specifications a brief analysis, then according to the WS-Security specifications, the other incompatible technologies like XML Digital Signature, XML Encryption and PKI be integrated into the SOAP header to extend the SOAP message.In the implementation,WSE tool provided by Microsoft will be applied to achieve the the security features such as privilege policy control,non-repudiation,selective protection of message.Compared to the applications that did not adopt the WS-Security or using traditional security protections,the confidentiality,integrity and authentication of message can get the sufficient protection.Accordingly a more effective security solutions will be applied in a highly security requirement environmnent like e-commerce... |
PDF Full Text Request