مرکز منطقه ای اطلاع رساني علوم و فناوري - Multiple-Tiered Security Hierarchy for Web Applications Using Central Authentication and Authorization Service

DocumentCode :

3423953

Title :

Multiple-Tiered Security Hierarchy for Web Applications Using Central Authentication and Authorization Service

Author :

Naito, Hisashi ; Kajita, Shoji ; Hirano, Yasushi ; Mase, Kenji

Author_Institution :

Graduate Sch. of Math., Nagoya Univ.

fYear :

2007

fDate :

Jan. 2007

Firstpage :

Lastpage :

Abstract :

The central authentication service (CAS) is a middleware for constructing a single sign on infrastructure for Web applications and has been developed by JA-SIG. In this paper, we investigate a multiple-tiered security hierarchy infrastructure for Web applications, by extending CAS to the central authentication and authorization service (CAS²). Since the new version of CAS (CAS3) supports the X.509 client certificate authentication, we use it as leverage to realize our multiple-tiered security hierarchy mechanism. As a result, CAS² uses X.509 client certification for not only authentication, but also authorization

Keywords :

authorisation; message authentication; middleware; JA-SIG; Web application; X.509 client certificate authentication; authorization service; middleware; multiple-tiered security hierarchy; Authentication; Authorization; Certification; Content addressable storage; Data security; Databases; Information security; Information technology; Management information systems; Web server;

fLanguage :

English

Publisher :

ieee

Conference_Titel :

Applications and the Internet Workshops, 2007. SAINT Workshops 2007. International Symposium on

Conference_Location :

Hiroshima

Print_ISBN :

0-7695-2757-4

Electronic_ISBN :

0-7695-2757-4

Type :

conf

DOI :

10.1109/SAINT-W.2007.80

Filename :

4090092

Link To Document :

https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3423953