Research on IBE Security Service Using Web Service
|School||Zhejiang University of Technology|
|Course||Computer System Architecture|
|Keywords||Web Service PKI IBE XKMS Key Managerment Security Service|
Web Service provides a loosely coupled model of software development, and integrates the heterogeneous applications of distributed network by the unified description for the operation interface and the standard of XML messaging. With the development of Web Service application, the security issue of providing and transferring service receives much attentions. The current Web Service model provides a more comprehensive security framework, and guarantees the Web service mechanism operates safely. However, with the development of cryptography techniques, studying a new and efficient application model of crytography security has become a hot spot. At the same time, how to design the new type of security application based on Web Service model, providing all kinds of unified, safe, and convenient security service for clients, It’s important for building a security application development environment of Web Service.At present, digital certificates is the core of Public Key Infrastructure(PKI). PKI is the most widely used as network security solution. With the development of the Web Service application, as well as the implementation of the XML-based Key Management Specification XKMS, there is much research of PKI-based Web Service security service architecture. The PKI-based service model integrates much service, such as PKI security implementation and key management, and eases the deployment problem of custom applications on the PKI, but running the system still can not avoid the complexity of operations, such as certificate management, revocation, maintenance, publishing and updating. IBE (Identity-based Encryption) takes the user’s identity information as a public key, and does not involve the management and operation of certificate. IBE is the new public key encryption system which the key is centrally managed. Therefore, there is important research value and practical significance to study the IBE security services based on Web Service. This article first introduces the basic theory and security framework of Web service, and the related technologies, and then researches the present situation of the PKI security service based on Web Service.Then, On the basis of analysis and comparison of IBE and PKI, it proposes a set of IBE Security Service System based on Web Service; it focuses on the design of the non-certified key management service and the related security applications. It designs and implements the prototype system of IBE security service (IBEWS); it describes the IBEWS system’s workflow achieving a performance test and comparing with the XKMS system based on PKI, which shows the advantage of IBEWS performance. Finally, the log encryption and security authentication of SAML, two applications based on IBEWS are given at the end of this paper, to state the availability and practical significance of IBEWS offering Security Service in the Web Service environment.