User authorization for accessing databases in Webtop systems: management of user information using LDAP

摘要

We are researching and developing security functions of Webtop system. In our Webtop system, we aim that a user is recognized correctly and that the access to the information resources, such as Web contents, Web application, and database, is permitted only if the user is authorised to use them. This paper reports implementation of the system which realizes delegation and single sign-on from Web application to database. Database system authenticates the user with the authentication information passed by the application which is stored in directory server (LDAP server) with confidentiality. This enables us to build the highly secure system in which a user can access the information if and only if he or she have the right to.