Saml-based Security Engine Trust Transfer

With the development of network technology, online security becomes an important problem. We need to offer users the identity and authority informations in the network applications, so as to ensure the security of the interaction.Web Services is a middleware technology, based on XML and relevant technology, which can support the services-based on loosecompling procedure call to users on Internet. XML, regards as a carrier of information expressing & transmission, can be used to access a series of operation described by Web Services. XMLEngine (XML-based Security Gateway),is designed to give the security and effective guarantee to the Web-service with XML. And we need to provide a mechanism to transfer information about an entity in defferrent cooperated domains, at the same time, domains can remain the possession of the imformation, the SAML(Security Assertion Markup Language)meet the requirement.Primarily, the author introduces the SAML Security, SOAP standard and relevant cryptology, which involved in this security engine.And then we bring up a feasible security engine model, which support the trust transfer.At last, we implement this model under Linux platform, and describe the process and detail.The author participate in the base platform, turst transfer system and configuration module, including the requirement analysis,principle design, detailed design, coding and testing work.And the usage analysis of encryption & decryption,signature & verification module.And worked with other group members in the overall planning and design of the XML Engine project, the final testing and deployment. At present, though there are more and more applications on XML basis, the implements of trust transfer has only been raised for a short period of time. Despite that domestic and international researches are not in small numbers, the application products pertaining to SAML are not too many. The relevant standard regarding SAML safety is very complex, involving multi-facet knowledge and technology. Therefore, there is a lot of room for research. The development of relevant products requires further improvements and enhancement.