| With the developing of Java EE platform and internet technology, more and more application system based on Java EE with B/S framework are built to support business processes. Because of the independence of those applications, user information are maintenanced by difference application systems, and can't be concenterred to each other. So, the user have to sign-on to multiple systems, this may lead to security leak and inconvenience.In actual application, SSO(Single-Sign On), a mechanism to authorization, has arisen. This mechanism allows user access all application system but only provide his or her credentials once.This paper contain three parts. Firstly, introduces the concept of single sign-on, cryptology which used in SSO, the technology of information system based on Java EE platform and the application of cryptology in java2. Secondly, four SSO models were analyzed to find a rational SSO based on Java EE, including CAS protocal from Yale University, dot net passport model from Microsoft, classical Kerberos model and Liberty model from Liberty Alliance. Compared with these four models by these advantages and defects based on Java EE, CAS was chosen to construct our SSO system. At last, CAS protocol's defects was investigated,and some advances to aviod those weakness were given, at the same time, the advanced SSO model was achieved by using Java EE, which can be integrated into existed information system. |
PDF Full Text Request