摘要: 针对Web服务中首次建立双方信任的问题,提出一种基于XACML的Web服务信任协商建立方案。利用XACML访问控制构建信任模型,给出信任协商策略描述,建立起基于XACML的信任协商架构,利用XML加密和签名来保证端到端的安全,提高了相互信任和策略的安全性。
关键词:
Web服务,
可扩展访问控制标记语言,
信任协商,
协商策略
Abstract: Aiming at how to establish firstly among Web services, a new trust negotiation scheme for Web services based on eXtensible Access Control Markup Language (XACML) is proposed. The trust model is constructed by using of XACML, and the description of negotiation strategies is provided, so the trust negotiation scheme based on XACML is fully built. The end-to-end security is protected with XML encryption and signature. The new scheme can be used to improve the security of trust among Web services and negotiation strategies.
Key words:
Web services,
eXtensible Access Control Markup Language(XACML),
trust negotiation,
negotiation strategies
中图分类号:
王尚平;马宏亮;张亚玲;王晓峰. 基于XACML的Web服务信任协商方案[J]. 计算机工程, 2008, 34(11): 137-139,.
WANG Shang-ping; MA Hong-liang; ZHANG Ya-ling; WANG Xiao-feng. Scheme of Trust Negotiation for Web Services Based on XACML[J]. Computer Engineering, 2008, 34(11): 137-139,.