资源描述
CON222如何将网站身份认证向CardSpace迁移课程内容概述为什么说密码成了互联网发展的瓶颈?构建CardSpace网站需要什么条件?迁移现有的网站到CardSpase步骤是什么?密码,让我又恨又爱。IdentityManagementandCoordinationBaked-insupportforsimpleandsecureaccess#ofPasswordsMobileIdentitiesCoordinatingServices2006年上半年十大病毒及疫情报告排名感染数中文名123456789471,363299,350240,354102,849灰鸽子传奇盗贼高波和瑞波CHM木马47,00644,24615,90212,183wmf恶意文件QQ大盗维京传华木马105工行钓鱼木马1097敲诈者2006-7-10信息出自:江民科技木马仍然是病毒主流4.5%3.7%3.1%13.6%木马病毒广告软件后门程序蠕虫病毒漏洞攻击脚本病毒49.2%25.9%2006-7-10信息出自:江民科技新闻回放假工行网再现身有消费者资金被盗(图)黑客“放鸽”盗宽带账号窃取3万余元玩网络游戏网银存款丢失数百用户欲联名起诉工行工行回应网银被盗事件称遭窃多因走漏密码网上银行屡屡遭窃黑客解密攻击全过程CardSpace简介“InfoCard”简化及提高系统登陆及认证的安全性私人桌面分离的用户上下文防止黑客攻击Self-issuedcards不永固本地存储Managedcards永固存储在STS(SecurityTokenService)“InfoCard”WS-*UserRelyingPartyWebServicesIdentityProvider“CardSpace”如何让网站支持CardSpace登录如何让Web支持CardSpace1.安装.NetFramework3.02.为WebSite安装证书3.在网页中添加调用CardSpaceIdentitySelector的代码4.更改Web.config在WebSite中使用证书关于证书原理:非对称加密作用:确认对方身份,加密信息HighAssurance(HA)证书中嵌入的Logo证书中的链接只起到验证作用在WebSite中安装证书安装证书为IIS用户(如ASPNET)设置证书的读取权限在WebSite中使用已安装的证书CertificatesToolsandSettings在网页中调用CardSpace的代码SigninwithInfoCard参数说明type=application/x-InstructsthebrowsertoengagetheinformationcardActiveXobjectControlsthetokentypetheIdentityparamname=tokenTypeSelectorwillemit;inthiscaseaSAML1.0tokenTheIdentityProvidersURLthatwillprovidetheidentity.Inthiscase,ahard-wiredURIthatinvokesthebuilt-inself-issuingprovider.paramname=issuerTheclaimsthattheRelyingPartyisparamaskingoftheUsertoprovidefromtheIdentityProvider.Theexamplesherearepartofthepre-definedsetforself-issued(personal)cards.name=requiredClaimsWeb.Congfig协议流程图Browserw/InfoCard1HTTP/GET(ProtectedPage)RedirectLoginPageWebSite2HTTP/GET(LoginPage)LoginPage(HTML)withInfoCardtag5HTTP/GET|POSTTargetPage+Token3Cookie+BrowserRedirectFrontEndWebSiteCardSpacelightsupUserselectscard4RelyingPartyWSGettingtokenvia-MexandWS-TrustIdentityProvider(ManagedorSelf)SecurityTokenServer将Card与现有帐户绑定将PPID与帐户主键关联登录时将对应帐户信息写入CookiesprotectedvoidPage_Load(objectsender,EventArgse)/iftheuserisauthenticatedthenjustredirectbacktothehomepage.User.Identity.IsAuthenticatedif(User!=null&User.Identity)!=null&Response.Redirect(.);/IfanxmlTokenispassedinthepost,thenthisisanInfocardPost.stringxmlToken=RequestxmlToken;if(xmlToken!=null&xmlToken.Trim()!=)TokenHelpertokenHelper=newTokenHelper(xmlToken);/GetstheUniqueidfromthetokenSqlMembershipProviderHelperstringusername=.GetUser(tokenHelper.getUniqueID();if(username!=null)MembershipUseruser=Membership.GetUser(username);if(user!=null)/givethecookiebacktothebrowser.FormsAuthentication.RedirectFromLoginPage(user.UserName,false);其他资源官方网站http:/
展开阅读全文