[1] Fielding R, Gettys J, Mogul J, et al. RFC 2616—1999, Hypertext transfer protocol[S], 1999. [2] Oppliger R. Microsoft .NET passport: a security analysis[J]. IEEE Computer Society, 2003, 36:29-35. [3] Hodges J. Liberty Architecture Overview V1.1. : Liberty Alliance, 2003. http://www.projectliberty.org/specs/. [4] Andreas Pashalidis, Chris J Mitchell. A Taxonomy of Single Sign-on Systems//Proceedings of 8th Australasian Conference on the Information Security and Privacy, ACISP. 2003: 249-264. [5] 李忠献, 詹榜华, 杨义先. 一种基于智能卡的公钥认证方案[J]. 北京邮电大学学报, 1999, 22(1): 85-87. Li Zhongxian, Zhan Banghua, Yang Yixian. Key authentication scheme based on smart cards[J]. Journal of Beijing University of Posts and Telecommunications, 1999, 22(1): 85-87. [6] 钟鸣, 杨义先. 一种高效的基于离散对数假设的身份认证方案[J]. 北京邮电大学学报, 2001, 24(1): 52-55. Zhong Ming, Yang Yixian. An efficient identification scheme based on discrete logarithm assumption[J]. Journal of Beijing University of Posts and Telecommunications, 2001, 24(1): 52-55. [7] Park J S, Sandhu R. Secure cookies on the Web[J]. IEEE Internet Computing, 2000: 36-45. [8] Anderson R, Needham R, Robustness. Principles for public key protocols //Proc Int'l. Conference on Advances in Cryptology(CRYPTO 95). 1995: 236-247. [9] Kohl J, Neuman C. RFC1510—1993, The kerberos network authentication service [S]. 1993. [10] 邱航, 权勇. 基于Kerberos的单点登录系统研究与设计[J]. 计算机应用, 2003: 142-144. Qiu Hang, Quan Yong. Research and design of kerberos-based single sign-on system[J]. Computer Applications, 2003, 23: 142-144. |