作者投稿和查稿 主编审稿 专家审稿 编委审稿 远程编辑

计算机工程 ›› 2010, Vol. 36 ›› Issue (3): 148-151. doi: 10.3969/j.issn.1000-3428.2010.03.049

• 安全技术 • 上一篇    下一篇

开放网络环境中面向信任的单点登录

万灿军,李长云   

  1. (湖南工业大学计算机与通信学院,株洲 412008)
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2010-02-05 发布日期:2010-02-05

Trust-oriented Single Sign-On in Open Network Environment

WAN Can-jun, LI Chang-yun   

  1. (School of Computer and Communication, Hunan University of Technology, Zhuzhou 412008)
  • Received:1900-01-01 Revised:1900-01-01 Online:2010-02-05 Published:2010-02-05

摘要: 在开放网络环境中,传统的单点登录易出现单点失效,难以解决跨域认证。针对以上问题,综合考虑身份信任机制和行为信任机制,提出一个面向信任的对等单点登录系统架构。构造基于主观逻辑的单点登录信任模型,给出模型的形式化信任描述,并在此基础上建立信任评估机制。该模型已应用于跨域认证,结果表明该模型是可行的。

关键词: 单点登录, 信任模型, 主观逻辑, 跨域认证

Abstract: In open network environment, the traditional Single Sign-On(SSO) is easy to lead to single point failure and difficult to solve the problems of cross-domain authentication. To resolve the above-mentioned problems, by considering the identity trust mechanism and the behavior trust mechanism, a trust-oriented Peer-to-Peer Single Sign-On system architecture is proposed. A Single Sign-On trust model based on subjective logic is built, the formal description of trust is given in this model, and the trust evaluation mechanism is established. This model is applied in the cross-domain authentication, and the results show that the model is feasible.

Key words: Single Sign-On(SSO), trust model, subjective logic, cross-domain authentication

中图分类号: