Unified Authentication System of the Telecommunications Industry
|School||South China University of Technology|
|Keywords||single sign-on unified certification telecom industry|
Unified authentication technology, is currently more popular enterprise business integration solutions. Uniform recognition Certificate is defined outside the system to authentication, user memory modules certified by the unified system operation, thus Between the various systems to achieve single sign-on, unified source of user information and other operations. Now associated with mainstream technology for unified authentication protocol OpenID, Kerberos, SAML, etc. Ready-made The product addresses only the user data information sharing in the case of single sign-on, and not heterogeneous System, the mutual distrust between the single sign-on system. Not fully consistent with a complete authentication system Business requirements. In this regard, this paper designed a complete unity of the telecommunications industry certification system. The specific Do include:(1) refine the system requirements, including infrastructure requirements, functional requirements, the external system access requirements,System performance and reliability requirements.(2) a unified authentication system to solve the key issues encountered in practice. In the face of changing business processes, The paper also explains how to use SOA to build the system made some effective practice. High concurrency based System design, there are many good industry practice, the paper also made ??reference to these practices, the use ofJMS asynchronous processing critical data synchronization. In database design, database using horizontal Library, full use of server resources. Update query operation far more than in the case, the design of the slow Kept active table approach, a combination of business requirements, greatly improving the response speed of the speed of the database.(3) design a complete authentication system of the basic process design, including authentication, single Login, user data synchronization. Reference to the existing technology, to design a new identity in line with identified needs Permit, single sign-on SSO process.(4) the system of testing to verify the design and made the conclusions.Finally, after the actual application, there are already many external systems through this certification system certification Work, on-line from the system after the actual use situation, we can say the system is designed to be successful.After a stress test in the case, can also prove that the design of this paper is a high concurrent effect And reasonable.