JOSSO SINGLE SIGN-ON 1.2 Introduction
Background knowledge: identity authentication system includes: directory service, verification and authorization service, certificate service, single landing service, system management and other modules.
JOSSO is a simple Java J2EE-based single-point login verification framework, mainly used to provide a centralized platform-independent user verification.
JOSSO main features: 1 100% Java, using JaaS, Web Services / SOAP, EJB, Struts, servlet / JSP standard technology; 2 JaaS across multiple applications and hosts, single landing, 3 pluggable Design Framework allows for a variety of verification rules and storage options; 4 You can use the servlet and EJB Security API to provide an identity authentication service for web applications, EJB; 5 support for X.509 client certificates; 6 Use reverse proxy modules You can create multi-layer single landing authentication, and use multiple policies to configure different verification modes at each layer; 7 supports storage user information and certificate services such as database, ldap, xml; 8 client provides PHP, ASP's API; 9 currently JBoss 3.2.6 and Jakarta Tomcat 5.0.27 or above support. 10 based on BSD license.
JOSSO homepage
Comments: There is currently no .NET client API, possibly because .NET framework itself has a good verification mechanism, but single landing is still necessary, especially for large sites, more need Unified user login management. 2, I don't know if I will support the Active Directory AD. Related Nouf: SAML: Security Assertion Markup Language
Related Links: Related Products List Author: Tian Chunfeng Time: 20,050,206 reprint address: http: //blog.9cbs.net/accesine960/archive/2005/02/06/282574.aspx use java open source authentication system:
Sun Interoperability Prototype for Liberty -. Interoperability Prototype for Liberty is the first open-source implementation of the Liberty Alliance Version 1.0 specification based on Java technology IPL consists of sample Java source code libraries, implementing the Liberty version 1.0 specification, and is not designed for commercial deployment IPL is licensed as open source under the Sun Microsystems Open Source License SourceID -.. Open Source Federated Identity Management -. Liberty Alliance, SAML, and WS-Federation Royalty free commercial use if used on fewer than 100 computers per company Shibboleth. - Shibboleth is developing architectures, policy structures, practical technologies, and an open source implementation to support inter-institutional sharing of web resources subject to access controls Key concepts within Shibboleth include: Federated Administration, Access Control Based On Attributes, Active Management of Privacy. And used OpenSAML. OpenSAML - OpenSAML IS A SET OF Open Source Java And C
libraries that are fully consistent with the SAML 1.0 and 1.1 CR specifications Yale CAS -. The Central Authentication Server (CAS) is designed as a standalone web application It is currently implemented as several Java servlets and runs through a HTTPS server Atlassian Seraph.. - Seraph is a very simple, pluggable J2EE web application security framework OpenSPML -. The toolkit offers an easy-to-use interface for configuring, issuing and interpreting standards-compliant provisioning requests across diverse identity infrastructures Novell Nsure UDDI Server -. Nsure is a UDDI 2.0 registry built on Directory Services technology. It offers a secure access to the registry contents (authentication and authorization), unified account management, and distribution of the registry by leveraging Directory Services. It works with any LDAP (V3) based directory backend. OpenPrivacy - a Reference Implementation of The Reputation Management Framework (RMF). Openprivacy's Core Project Is Designed to EAS e the process of creating community with reputation enhanced pseudonymous entities The RMF is primarily a set of four interfaces: Nym Manager, Communications Manager, Storage Manager and Reputation Calculation Engine (RCE) NSF Middleware Initiative - NMI-EDIT:.. Identity and Access Management . for Collaborative Applications jSai - jSai (pronounced "Jay-Say") is iPOV's home grown Servlet Authentication Implementation jSai is implemented completely using J2SE Servlet technology; no J2EE "Application Server".
. Needed jSai supports basic JDBC and XML backed user stores, as well as an LDAP user store jSai provides developers with the application level security they want and need for small and medium size web applications;. Avoiding the complex setup in other security implementations that are AIMED AT LARGE "Enterprise"
