A Single Sign-On Scheme for Cross Domain Web Applications Based on SOA

The SSO (Single Sign On) is one of the most popular enterprise business integrated solutions. The SSO means that users could only login once to access all the mutual trusted applications. The existing SSO schemes lead into much modification to original system when adding SSO to new application, which means high coupling relation between applications. In this paper, we proposed a SSO scheme based on SOA which would make business system. authentication proxy. and authentication authority management as separate services. The proposed scheme uses enterprise service bus (ESB) to accomplish information interaction, ticket transmission and implement cross domain SSO. The login authentication of business system cloud use authentication proxy to realize different forms of authentication. The scheme is based on PKI/PMI, which achieves strong identity authority and flexible permission management. The result shows our scheme is a high secure, broad perspective solution to the problem of high coupling in SSO.