Browse > Article
http://dx.doi.org/10.3745/KIPSTC.2005.12C.3.339

Design and Implementation of a Java-Based Single Sign-On Library Supporting SAML (Security Assertion Markup Language) for Grid and Web Services Security  

Jeong Jongil (세종대학교 대학원 컴퓨터공학과)
Yu Seokhwan (세종대학교 대학원 컴퓨터공학과)
Shin Dongkyoo (세종대학교 컴퓨터공학과)
Shin Dongil (세종대학교 컴퓨터공학과)
Cha Moohong (세종대학교 컴퓨터공학과)
Publication Information
The KIPS Transactions:PartC / v.12C, no.3, 2005 , pp. 339-346 More about this Journal
Abstract
In recent years, the Grid development focus is transitioning from resources to services, A Grid Service is defined as a Web Service that provides a set of well-defined interfaces and follows specific conventions. SAML as a standard for Web Services which enables exchange of authentication, authorization, and profile information between different entities provides interoperability among different security services in distributed environments. In this paper, we implemented SAML API. By offering interoperability for non XML-based authentication technologies using SAML specification offering a method to integrate the existing Single Sign-On technologies, the API provides convenience for accessing different services in Grid architecture.
Keywords
Sin81e Sign-On; SAML; E-commerce Security;
Citations & Related Records
연도 인용수 순위
  • Reference
1 eXtensible Access Control Markup Language TC, http://www.oasis-open.org/committees/tc_home.phpwg_abbrev=xacml
2 XML Key Management Specification(XKMS), http://www.w3.org/TR/xkms
3 A. Frier, P. Karlton, P. Kocher, 'The SSL 3.0 Protocol.' Net Scape Communications Corporation, Nov., 18, 1996
4 V. Semar, 'Single Sing-O Using Cookies for Web Applications', Proceedings, IEEE 8th International Workshops on Enabling Technologies, Infrastructure for Collaborative Enterprises (WET ICE '99), pp. 158-163, 1999
5 Assertion and Protocol for the OASIS Security Assertion Markup Language(SAML) V1.0, http://www.oasis-open.org/committees/security
6 B. Galbraith, R. Trivedi, D. Whitney, D.V. Prasad, M. Janakiraman, A. Hiotis, W. Hankison, 'Professional Web services Security', Wrox Press, 2002
7 XML Encryption WG, http://www.w3.org/Encryption/2001/
8 B. Pfitzmann, 'Privacy in Enterprise Identity Federation Policies for Liberty Single Signon.', 3rdWorkshop on Privacy Enhancing Technologies(PET 2003)m Dresden March, 2003
9 Global Grid Forum OGSA Security Working Group, 'Use of SAML for OGSA Authorization', http://www.globus.org/ogsa/Security
10 Binding and Profiles for the OASIS Security Assertion Markup Language (SAML) V1.1, http://www.oasis-open.org/committees/ssecurity
11 B. Pfitzmann, B. Waidner, 'Token-based Web Single Signon with Enabled Clients' IBM Research Report RZ 3458(#93844), November, 2002
12 I. Foster, C. Kesselman, J.M. Nick, S. Tueckse, 'The Physiology of the Grid' An Open Grid Services Architecture for Distributed Systems Integration, http://www.globus.org/research/papers/ogsa.pdf
13 T.A. Parker, 'Single Sign-On Systems-The Technologies and The Procucts', European Convention on Security and Detection, pp.151-155, 16-18 May, 1995
14 I. Foster, C. Kesselman, 'The Globus Project: A Status Reprt.' Future Generation Computer Systems, Volume.15, pp.607-621, 1999   DOI   ScienceOn
15 I. Foster, C. Kesselman, G. Tsudik, S. Tuecke, 'A Security Architecure for Computational Grids.' Proc. 5th ACM Conference on Computer and Communications Security Conference, pp.83-92, 1998   DOI
16 A. Volchkov, 'Revisiting Single Sign-on', A Pragmatic Approach in a New Context. IT Professional, Volume.3, Issue.1, pp.39-45, Jan/Feb., 2001   DOI   ScienceOn