Title :
MARV - Data Level Confidentiality Protection in BPEL-Based Web Service Compositions
Author :
Majernik, Filip ; Jensen, Meiko ; Schwenk, Jörg
Author_Institution :
Horst Gortz Inst. for IT-Security, Ruhr-Univ. Bochum, Bochum, Germany
Abstract :
With services technology being on the rise, the needs for trustworthy and secure data processing emerge. Usually, trust can be established for a data originator and an ultimate data recipient, but how about the data-forwarding parties in between? Especially in inter-organizational service compositions it may be doubted whether all involved partners share the same level of security, especially for data they do not generate nor process themselves. In this paper, we focus on the data confidentiality problem in inter-organizational service compositions, propose a solution based on the Web Services and BPEL specifications, and show how this solution can be applied to real-world scenarios.
Keywords :
Web services; business data processing; security of data; specification languages; BPEL specification; BPEL-based Web service composition; business process execution language; data level confidentiality protection; data originator; data recipient; interorganizational service composition; secure data processing; trustworthy data processing; Business; Credit cards; Encryption; Simple object access protocol;
Conference_Titel :
Network and Information Systems Security (SAR-SSI), 2011 Conference on
Conference_Location :
La Rochelle
Print_ISBN :
978-1-4577-0735-3
DOI :
10.1109/SAR-SSI.2011.5931365
