Security Solution Research In The Single Sign-On

With the enterprise informatization,enterprise applications are more and more. The system often has its own security policy. As a result of independent systems,a user must be in accordance with the appropriate identity for system login before in the use of each of the applications. Users must remember each system's username and password . This will increase the possibility of a mistake. And it will also increase the possibility of illegal interception and destruction ,security will be reduced. If the user has forgotten password,unable to perform the task,he need to request the help of the administrators,and have to wait until regained the password, resulted in resources costs,and reduced productivity. Due to the above-mentioned reasons,made such a demand in the market: user can access a network based on the initial authentication to access all authorized network resources seamlessly. So as to enhance the efficiency of users,reduce the cost of network operations andimprove network security. As a result, Single Sign-On technology came into being.This paper studied the Single Sign-On Technology, research and summarizes the flow and security of the system. for the characteristics of WEB applications, proposed a Single Sign-On solution based on WEB request agent, use of digital signatures and SSL technology to guarantee the safety of the system, use of Dynamic-Link Library technology enhances system portability and extensibility.This paper analysed the multi-system problems first,explained the necessity and importance of Single Sign-On. Then compared and analysed the characteristics of several Single Sign-On technology, summarized the advantages and disadvantages of each, as well as the application of environmental. Then,studied other technical related with Single Sign-On.On this basis, proposed a Single Sign-On solution based on WEB request agent. The solution will package the core functions of the Single Sign-On system to a components,and use authentication technology. The purpose is to ensure a Single Sign-On system security,and match WEB applications characteristics of light and easy to expand.