Design And Implement Of Single Sign-on Unified Authentication System Based On Web

Nowadays, with rapid development of Internet, Web applications have been increasinglyinvolved in people’s daily life, office, entertainment and other aspects. Many applicationshave their own independent authentication and authorization management mechanism. Usersare expected to do multiple logins when they access different applications under the samecompany. At the user level, such phenomenon not only brings inconvenience to the users, butalso not conducive to the user’s information security. At the operational level, repeatdevelopment of authentication systems wastes labor, and operation of authentication systemsalso expenses human and hardware resources. Therefore, it is very necessary to implementSSO (Single sign-on). Currently, there are a lot of SSO solutions on the market for theintegration of business platform, but these solutions don’t have single logout and no one isaimed at the integration of business platform for the Group and its subsidiaries.At this point, this paper described the background of the SSO system and the meaning.The paper introduced the developing of the SSO system, analysed the technology that used inthe system, such as SSO, Cache, Socket, Dynamic Service and so on. We based on therequirement of the integration of business platform for the Group and its subsidiaries, pointout the solution. We use the OO methodologies to analyses and implementation the system.After complete the code, we begin to test the system. The solution is putted on the productionenvironments at the last. This solution has been running very well.The program compared with the traditional SSO solutions, this scheme has the followingcharacteristics and advantages:1, Using the cache in the system, improve the response speed of system, increase theconcurrency capabilities of the system. Using Java program reads the data from remote host’s memory10times faster than reading data from the database. We should cache objects that’sfrequency is high, will greatly increase the response ability.2, Using the Socket connection technology to reduce resource in host machine. Use longSocket connection way to transmit data rate is about two times of Web services, system atpeak hours and he communication system needs to be done at least67times per second. Withlong Socket connection communication effectively reduce resource consumption.3, Using the OSGI framework, more quickly respond to changing requirements. If wantto change the related services on the Web container, we need to restart the Web container. Itwill affect the service in the whole container. If we change the services on OSGI platforms,only need to update the bundles, also affected the bound modules. So the OSGI platformupdate service scope is small. Update the bundle command execution time is very short, thattakes1/11time than the way of the Web contains.4, The design of the system has special function: single point logout.