【摘要】 随着网络应用技术的迅猛发展,面向服务的体系结构已经成为分布式应用的一种流行的设计规范。Web服务技术作为SOA的一种具体实践方式,描述了网络上各种软件应用的服务化的统一功能表示、共享、集成以及信息交换处理的机制,从而得以广泛的应用。同时,Web服务的安全隐患成为了应予以重视并亟需解决的重要问题。传统的SSL\TLS和HTTPS等协议是基于点对点的安全会话传输协议,只能提供点到点的安全连接。针对上述问题,本文设计并实现了一种基于策略的Web服务安全综合处理方法,通过对服务消息的加解密、数字签名和访问控制的综合使用,满足了Web服务端到端的安全需求,并在信息系统的应用场景中进行了安全处理系统的实际应用。更多还原

【Abstract】 With the rapid development of network application technology, service-oriented architecture has become a popular design specification for distributed applications.As a concrete practice way of SOA, Web services technology describes the mechanism of uniform function representation, sharing, integration and information exchange processing of various software applications on the network, so as to be widely used.At the same time, the security hidden danger of Web services has become an important problem that should be paid attention to and urgently solved.Traditional protocols such as SSL\TLS and HTTPS are point-to-point secure session transfer protocols that only provide point-to-point secure connections.Aiming at the above problems, this paper designs and implements a comprehensive processing method of Web service security based on policy.Through the comprehensive use of service message encryption and decryption, digital signature and access control, the security requirements of Web service end to end are satisfied, and the practical application of security processing system is carried out in the application scenario of information system.更多还原