【摘要】 计算机安全系统所需要的是一种具备适应性,稳健性和自治性的技术。针对其适应性和自治性,在开发一个企业级的用户身份认证体系同时,依据目录服务理论,将轻量级目录访问协议和Kerberos认证技术相结合来解决密码安全和身份验证,并且应用于身份认证服务器的结构设计,进行用户统一身份认证和授权,使得整个系统的安全性有了进一步的提高。更多还原

【Abstract】 Computer security system requires the properties of flexibility,stability and self-controllability.Focusing on the flexibility and self-controllability and referring to the directory service theory,this paper developes an identity authentication system for the enterprises by introducing an integrating Kerberos authentication mechanism with LDAP protocol.Kerberos can be applied to the design of certificate authorities architeture and the implementation of the unified authentication and authorization,which significantly improves the security of the indentity authentication system更多还原