[1]王剑[],吴定峰[],阚京[],等. 面向农业信息服务的单点登录技术研究与改进[J].计算机技术与发展,2016,26(05):191-196.
 WANG Jian[],WU Ding-feng[],KAN Jing[],et al. Design and Improvement of Single Sign-on Technology for Agriculture Information Services[J].,2016,26(05):191-196.
点击复制

 面向农业信息服务的单点登录技术研究与改进()

《计算机技术与发展》[ISSN:1006-6977/CN:61-1281/TN]

卷:
26
期数:
2016年05期
页码:
191-196
栏目:
应用开发研究
出版日期:
2016-05-10

文章信息/Info

Title:
 Design and Improvement of Single Sign-on Technology for Agriculture Information Services
文章编号:
1673-629X(2016)05-0191-06
作者:
 王剑[1]吴定峰[1]阚京[2]赵华[1]刘建平[1]
1. 中国农业科学院 农业信息研究所;2.北京工业大学 计算机学院
Author(s):
 WANG Jian[1] WU Ding-feng[1]KAN Jing[2]ZHAO Hua[1]LIU Jian-ping[1]
关键词:
 单点登录权限管理访问控制CAS 农业数据服务OAuth2.0OpenID
Keywords:
 single signrights managementaccess controlCAS agricultural data servicesOAuth2. 0OpenID
分类号:
TP311
文献标志码:
A
摘要:
 针对农业信息服务平台中多个应用系统在资源整合和联合服务过程中统一认证、统一授权和单点登录的需求,文中提出了一种基于OAuth2.0和OpenID的单点登录技术.该技术主体的框架能够与现有的CAS框架相结合,并采用一种非侵入的方式整合多个农业信息服务应用平台中的登录功能模块,最大限度地减少了对原有应用平台代码的修改.同时,这种单点登录技术框架还通过对细粒度控制框架和APR技术方案的应用,对现有的基于CAS框架下的用户权限管理及其HTTPS访问方式进行了改进.测试结果表明,该单点登录技术所构建的服务系统总体性能稳定,整体框架设计合理,能够满足农业信息服务平台的应用需求.
Abstract:
 To address the requirements of unified authentication and authorization,and the original Single Sign-On ( SSO) in the process-ing of resource integration and joint services in information service of agriculture,a SSO technology is proposed in this paper based on OAuth2. 0 and OpenID. This system could integrate current CAS,utilization of a non-invasive manner to integrate log function modules of multiple application platforms,which can minimize the modification of code for original platform. Besides,user rights management and HTTPS access in this system that based on CAS framework are improved with technologies of fine-grained control and APR. The test re-sults show the performance of the system is stable and the design of the platform is reasonable. It is believed that the demand for agricul-tural information service platform should be met.

相似文献/References:

[1]徐金芳 张永胜.普适计算环境中的访问安全性研究[J].计算机技术与发展,2009,(03):161.
 XU Jin-fang,ZHANG Yong-sheng.Study the Security of Access Control in Pervasive Computing Environment[J].,2009,(05):161.
[2]郑壮贤 李振坤 陈荣征 郑康亮.基于Cookie的门户网站单点登录系统设计实现[J].计算机技术与发展,2008,(06):199.
 ZHENG Zhuang-xian,LI Zhen-kun,CHEN Rong-zheng,et al.Design and Implementation of Single Sign on System in Portal Website Based on Cookie[J].,2008,(05):199.
[3]沈杰 朱程荣.基于Yale-CAS的单点登录的设计与实现[J].计算机技术与发展,2007,(12):144.
 SHEN Jie,ZHU Cheng-rong.Design and Implementation of Single Sign - on Using Yale - CAS[J].,2007,(05):144.
[4]颜勇 胡华平.基于XML安全技术的电子公文交换系统[J].计算机技术与发展,2006,(05):103.
 YAN Yong,HU Hua-ping.Electronic Documents Exchange System Based on XML Security Technology[J].,2006,(05):103.
[5]杨战海.基于Kerberos协议的用户到用户认证系统的研究[J].计算机技术与发展,2010,(10):180.
 YANG Zhan-hai.Research on Kerberos Protocol Based User-to-User Authentication System[J].,2010,(05):180.
[6]王茜,史晨昱,李安颖,等.基于统一用户管理的办公业务资源系统集成[J].计算机技术与发展,2014,24(01):200.
 WANG Qian,SHI Chen-yu,LI An-ying,et al.Office System Integration of Business Resource Based on UUM[J].,2014,24(05):200.
[7]张志宏,吴庆波,邵立松,等.基于飞腾平台TOE协议栈的设计与实现[J].计算机技术与发展,2014,24(07):1.
 ZHANG Zhi-hong,WU Qing-bo,SHAO Li-song,et al. Design and Implementation of TCP/IP Offload Engine Protocol Stack Based on FT Platform[J].,2014,24(05):1.
[8]梁文快,李毅. 改进的基因表达算法对航班优化排序问题研究[J].计算机技术与发展,2014,24(07):5.
 LIANG Wen-kuai,LI Yi. Research on Optimization of Flight Scheduling Problem Based on Improved Gene Expression Algorithm[J].,2014,24(05):5.
[9]黄静,王枫,谢志新,等. EAST文档管理系统的设计与实现[J].计算机技术与发展,2014,24(07):13.
 HUANG Jing,WANG Feng,XIE Zhi-xin,et al. Design and Implementation of EAST Document Management System[J].,2014,24(05):13.
[10]侯善江[],张代远[][][]. 基于样条权函数神经网络P2P流量识别方法[J].计算机技术与发展,2014,24(07):21.
 HOU Shan-jiang[],ZHANG Dai-yuan[][][]. P2P Traffic Identification Based on Spline Weight Function Neural Network[J].,2014,24(05):21.
[11]田野[],李忠献[],崔军[]. 一种在Android移动终端实现单点登录的新方法[J].计算机技术与发展,2017,27(04):145.
 TIAN Ye[],LI Zhong-xian[],CUI Jun[]. A New Method for Single Sign-on at Android Terminal[J].,2017,27(05):145.

更新日期/Last Update: 2016-09-19