基于SOA的企业应用跨安全域访问控制

在集团型企业应用系统集成中采用面向服务架构(SOA),可以很好地适应系统异构和分布的特点,却使整个系统面临新的安全挑战。为解决SOA架构下的安全问题,该文提出了一种企业应用跨安全域访问控制方案。其核心思想是,在传统SOA实现模型的基础上,建立一个基于代理的统一服务认证授权系统,对分布式企业服务总线上的服务资源进行共享管理和访问控制,保证系统跨安全域访问的安全可靠。在某集团型企业信息化建设中,该方案能有效提高系统的安全性、可扩展性和可变更性,初步显示了良好的应用价值。

SOA-based cross-domain access control for enterprise applications

The service-oriented architecture(SOA),which is utilized for application system integration for group enterprises,can adapt to the heterogeneous and distributed features of the systems,but has problems that challenge the system security.A cross-domain access control scheme is presented for enterprise applications to resolve the SOA security problems.The core idea is to build a uniform agent-based authentication and authorization system based on the conventional SOA implement model,which achieves shared mana...