论文部分内容阅读
在集团型企业应用系统集成中采用面向服务架构(SOA),可以很好地适应系统异构和分布的特点,却使整个系统面临新的安全挑战。为解决SOA架构下的安全问题,该文提出了一种企业应用跨安全域访问控制方案。其核心思想是,在传统SOA实现模型的基础上,建立一个基于代理的统一服务认证授权系统,对分布式企业服务总线上的服务资源进行共享管理和访问控制,保证系统跨安全域访问的安全可靠。在某集团型企业信息化建设中,该方案能有效提高系统的安全性、可扩展性和可变更性,初步显示了良好的应用价值。
Adopting Service Oriented Architecture (SOA) in group enterprise application system integration, which can well adapt to the heterogeneity and distribution of systems, brings the whole system to new security challenges. In order to solve the security problem under the SOA architecture, this paper proposes a cross-security domain access control scheme for enterprise applications. The core idea is to establish an agent-based unified service authentication and authorization system based on the traditional SOA implementation model, share the management and access control of service resources on the distributed enterprise service bus, and ensure the security of system access across secure domains reliable. In a group of enterprises in the construction of information technology, the program can effectively improve the system security, scalability and changeability, preliminary showed a good value.