Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Web service security control mechanism based on PKI and PMI

A security control and web service technology, applied in the field of web service security, can solve problems such as inability to provide strong identity authentication and authority control, and achieve the effect of ensuring unforgeability, multiple system resources, and high accuracy

Inactive Publication Date: 2008-10-29
ZHEJIANG UNIV
View PDF0 Cites 19 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Existing HTTPS-based web service security solutions cannot provide strong identity authentication and authority control, which are essential for e-commerce and e-government

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Web service security control mechanism based on PKI and PMI
  • Web service security control mechanism based on PKI and PMI

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0014] The main design idea of ​​the present invention is: carry out identity authentication through PKI, and carry out authority control through PMI, so as to realize the security of safe Web service calling.

[0015] The implementation steps are as follows: the user applies for an identity certificate through the PKI system, and then applies for an attribute certificate in the PMI system according to his or her identity certificate. Set to one or more web services. When a user uses a web service, first go to the PKI system to check the validity of the identity certificate, and then go to the PMI system to check whether the user has the right to call the web service. When all checks pass, allow Users access Web services to implement secure Web service calls.

[0016] This control mechanism includes: PKI system, PMI system and Web Service security system.

[0017] The PKI system provides users with public and private key management. Users fill out the application form, includ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a safety control mechanism based on Web service of PKI and PMI, which comprises a PKI system, a PMI system and a safety system of Web service. Users apply for a letter of identification through the PKI system, and then apply for an attribute certificate according to the letter of identification to the PMI system. Through the attribute certificate, the user identification and one or more roles are related. The roles then are bond with one or more Web service through the strategy certificate pre-defined by the PMI system. Then when users use Web service, the safety system of web helps the PKI system to check the legality of an identification letter and helps the PMI system to check whether a user has the right to call the Web service or not. When all checks pass through successfully, the user can access the Web service so as to realize safety calling of Web service. The mechanism of the invention provides a set of identification authentication and access control systems with strong integrity, thereby ensuring the confidentiality, the integrity and the non-repudiation of calling information of Web service.

Description

technical field [0001] The invention relates to the field of Web service security, and is a PKI- and PMI-based Web service security control mechanism for providing identity authentication and authority control for Web services. Background technique [0002] PKI (Public Key Infrastructure) is a key management platform that can provide key and certificate management required for cryptographic services such as encryption and digital signatures. Using digital signature technology, PKI can provide the following four main services: one is authentication, which confirms to an entity that another entity is indeed itself; the other is integrity, which ensures that data has not been modified intentionally or unintentionally; Confidentiality, to ensure to an entity that no one can understand the key part of the data except the receiver; the fourth is non-repudiation, to confirm to one entity that the operation was completed by another entity. [0003] PMI (Privilege Management Infrast...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L9/32H04L9/08
Inventor 吴健黄志明尹建伟邓水光李莹吴朝晖
Owner ZHEJIANG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com