论文部分内容阅读
本文中描述了政府网上办事系统现有用户身份管理和认证的现状、存在问题和业务需求,介绍了安全断言标记语言SAML 2.0标准协议和OpenAM开源项目,分析了SAML2.0标准协议的特点和优势。最后,基于OpenAM和SAML2.0标准协议,构建一个政府统一身份认证系统,包括IDP端SAML断言构造和SP端SAML断言解析,实现政府跨部门间的统一用户管理、身份认证和单点登录,为政府网上办事的推广应用,提供一种切实有效的解决途径。
This paper describes the status quo, existing problems and business requirements of the current user identity management and authentication on the government online service system, introduces the SAML 2.0 standard protocol and OpenAM open source project, analyzes the characteristics and advantages of the SAML2.0 standard protocol . Finally, based on the OpenAM and SAML2.0 standard protocols, a government unified identity authentication system is constructed, including IDL SAML assertion constructs and SP SAML assertion parsers to achieve unified user management, identity authentication and single sign-on The promotion and application of government online services provide an effective and effective solution.