Title :
Model driven security frameworks for addressing security problems of Service Oriented Architecture
Author :
Saleem, Muhammad Qaiser ; Jaafar, Jafreezal ; Hassan, Mohd Fadzil
Author_Institution :
Dept. of Comput. & Inf. Sci., Univ. Teknol. PETRONAS, Tronoh, Malaysia
Abstract :
Service Oriented Architecture (SOA) based on Web Services technology gained popularity because business work flows can easily be executed as an orchestration of Web Services. These Web Services are independently developed and may be internal or external. With increase in connectivity among the Web Services, security risks rise exponentially. Moreover the security requirements are not defined at organizational level rather they left until the technical level. Many security problems related to SOA applications are highlighted by different authors which if not properly managed might have serious consequences. Various Model Driven Security Frameworks are presented by different research groups to overcome the security problems of SOA based applications. In this paper we have highlighted the security problems for SOA based applications and few Model Driven Security Frameworks are presented to develop secure software applications; their working style and security goals are also discussed in the course of paper.
Keywords :
Web services; security of data; software architecture; SOA application; Web service; business work flow; model driven security framework; organizational level; security problem; security requirement; security risk; service oriented architecture; Business; Object oriented modeling; Security; Service oriented architecture; Standards; Unified modeling language; Model Driven Architecture; Model Driven Security; Model Driven Software Development; Service Oriented Architecture;
Conference_Titel :
Information Technology (ITSim), 2010 International Symposium in
Conference_Location :
Kuala Lumpur
Print_ISBN :
978-1-4244-6715-0
DOI :
10.1109/ITSIM.2010.5561580
