| 摘 要: 针对现有跨域单点登录系统存在的安全性不高、兼容性较差等问题,本文设计实现了一种安全高效的跨 域单点登录系统。该系统通过多因子用户身份认证方法,结合票据加密传输,有效提升了系统安全性;并提供插件方式 承接第三方应用系统,降低了开发成本。安全性分析与性能评测表明,该系统较同类系统安全性更高,性能更优,具有 较好的应用前景。 |
| 关键词: 单点登录;身份认证;跨域 |
|
中图分类号: TP39
文献标识码: A
|
| 基金项目: 国家自然科学基金青年基金项目(No.61402514). |
|
| Design and Implementation of a Secure and Efficient Cross-Domain Single Sign-On System |
|
WU Junnan,LI Tiejun,YUAN Yuan,SUI Rongheng
|
( College of Computer, National University of Defense Technology, Changsha 410073, China)
|
| Abstract: The existing cross-domain single sign-on systems have the problems of low security and poor compatibility. To address this issue,this paper designs and implements a secure and efficient cross-domain single sign-on system.The proposed system enhances system security by multi-factor user identity authentication and token encryption transmission.The system also provides plug-in interface to third-party application system,largely reducing development cost.Security analysis and performance evaluation show that the system has higher security and better performance than the existing systems,and has a good application prospect. |
| Keywords: single sign-on;authentication;cross-domain |
