| Authentication is the first strategic and important step for logging in the Security system. Firstly, User should present its identity when he accesses a security system (e.g. mail, database and so on), then he can continue to do next step of visiting and controlling. Single sign-on is the system, which centralized, manages a great deal of different ID authentications and sign-on systems. It is meaningful to use non-Single sign-on method, especially to modern corporations and governments, which is easy for user to use and control, and can improve the system security level in some degree.On the basis of analysis of advantages and shortcomings of applied Single sign-on system models that are popular in home and foreign countries, this article introduces a kind of Single sing-on system model that is more appropriate to different kinds of cooperation. The model makes use of LDAP repositories of authentication information that can support a variety of authentication methods. This article introduces the systematic frame of this system and concrete procedure at the same time, and describes the design philosophy adopted of each module of the system and concrete technology adopted in detail. The concrete designs with representational module are enumerated too. The article analyze to this system at the end, pointed out the pluses and minuses of this system and research direction in the future. This system is a good one with arrangement, management and security.The main contents are as follows:1, Introduce Single sign-on and LDAP technology.2, Introduce research and design of Single sign-on system.3, Describes the design philosophy adopted of each module of the system andconcrete technology adopted in detail. 4, Analysis system performance.The Single sign-on topic, mentioned in this article, comes from the cooperation with enterprises. |
PDF Full Text Request