中文摘要：

会话认证协议原型是针对Web服务会话实体通信安全问题而提出的概念模型。从密钥机制、匿名服务实例以及会话管理几个方面分析，协议中存在的安全问题和不足之处，并基于DH算法对协议原型作出了改进和扩展。最后，运用改进后的协议对Web服务会话实体之间的通信和认证进行管理，发现改进后的会话实体认证协议能够使Web服务会话交易过程更加安全。

英文摘要：

The archetype of session authentication protocol model is presented to solve the problem of communication security among session entities in Web services. The security technologies and the shortages of the protocol in key mechanism, anonymous instance and session management are analyzed, and then some improvements and extension are made over the archetype protocol based on DH algorithm. Finally, the new session authentication protocol is used for the management of the communication among session entities in a Web services transaction environment and the authentication in a testing system. The test result reveals that the new session entities authentication protocol can provide a trustful protection for the session process in Web services.