Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Web service security control mechanism based on PKI and PMI

A security control and web service technology, applied in the field of web service security, can solve the problem of inability to provide strong identity authentication and authority control, and achieve the effect of ensuring non-forgery, multi-system resources, and convenient access

Inactive Publication Date: 2011-05-11
ZHEJIANG UNIV
View PDF2 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Existing HTTPS-based web service security solutions cannot provide strong identity authentication and authority control, which are essential for e-commerce and e-government

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Web service security control mechanism based on PKI and PMI
  • Web service security control mechanism based on PKI and PMI
  • Web service security control mechanism based on PKI and PMI

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0014] The main design idea of ​​the present invention is: carry out identity authentication through PKI, and carry out authority control through PMI, so as to realize the security of safe Web service calling.

[0015] The implementation steps are as follows: the user applies for an identity certificate through the PKI system, and then applies for an attribute certificate in the PMI system according to his or her identity certificate. Set to one or more web services. When a user uses a web service, first go to the PKI system to check the validity of the identity certificate, and then go to the PMI system to check whether the user has the right to call the web service. When all checks pass, allow Users access Web services to implement secure Web service calls.

[0016] The control mechanism includes: PKI system, PMI system and Web service security system.

[0017] The PKI system provides users with public and private key management. Users fill out the application form, includi...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a safety control method based on the Web service of PKI and PMI, which comprises a PKI system, a PMI system and a safety system of the Web service. Users apply for a letter of identification by the PKI system, and then apply for an attribute certificate in the PMI system according to the letter of identification. The attribute certificate relates to the user identification with one or more roles. The roles are then bond to one or more Web services by a strategy certificate pre-defined by the PMI system. When the users use the Web service, the safety system of Web helps the PKI system to check the legality of the letter of identification and helps the PMI system to check whether the user has the right to call the Web service or not. When all checks pass through successfully, the user can access the Web service so as to realize the safety calling of the Web service. The mechanism of the invention provides a set of identification authentication and access control system with strong integrity, thereby ensuring the confidentiality, the integrity and the non-repudiation of the calling information of the Web service.

Description

technical field [0001] The invention relates to the field of Web service security, and is a PKI- and PMI-based Web service security control method for providing identity authentication and authority control for Web services. Background technique [0002] PKI (Public Key Infrastructure) is a key management platform that can provide key and certificate management required for cryptographic services such as encryption and digital signatures. Using digital signature technology, PKI can provide the following four main services: one is authentication, which confirms to an entity that another entity is indeed itself; the other is integrity, which ensures that data has not been modified intentionally or unintentionally; Confidentiality, to ensure to an entity that no one can understand the key part of the data except the receiver; the fourth is non-repudiation, to confirm to one entity that the operation was completed by another entity. [0003] PMI (Privilege Management Infrastruc...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L9/32H04L9/08
Inventor 吴健黄志明尹建伟邓水光李莹吴朝晖
Owner ZHEJIANG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products