| At present, technologies of SOA(Service Oriented Architecture) and web serviceshas been widely used in enterprise-class commercial development. And one of the focusproblems which hinder the development and spread of SOA and web services is how toguarantee the security of message communication between different web services. Webservices communicate with each other through SOAP(Simple Object Access Protocol)messages. Nowadays, the security mechanisms of SOAP messages exchange mostlybased on Transport Layer. Due to technical limitations, there are various drawbacks inTransport Layer mechanisms. So it needs to establish a service-oriented securitymechanism of SOAP message exchange based on Message Level.This paper mainly focuses on service-oriented message level security mechanism ofSOAP message exchange. Firstly, the author introduces some techniques related to SOA,web services and SOAP, and on this basis, studies on security mechanism of messageexchange based on Transport Layer and analyses its drawbacks, then raises the necessityof establishing service-oriented message level security mechanism of SOAP messageexchange. Secondly, studies on current message level security architecture of webservices based on WS* standards and points out its defects, then a method that addingan SOAP Account information to SOAP message is proposed to improve currentmechanism. Then, the author designs and implements a new security mechanism ofmessage exchange that adding SOAP Account processing modules to existed securityarchitecture of web services, and explains its workflow. Finally, feasibility andexecutive performance of SOAP Account technique mentioned in this paper is validatedand analyzed by a concrete experiment. |
PDF Full Text Request