Title :
A SRP based handler for Web service access control
Author :
Silva, Flávio O. ; Pacheco, João A A ; Rosa, Pedro F.
Author_Institution :
Networking & Comput. Archit. Group, Univ. Fed. de Uberlandia, Brazil
Abstract :
Security is a critical issue. The wide use of Internet applications has tremendous benefits, but a security fail can expose confidential data. Web services is a software application that can be remotely accessed over Internet using interoperable standards based on XML. At this time, there are no broadly adopted specifications for Web services security and we present an extension to the SRP (Secure Remote Password) protocol in order to apply access control to a Web service as an independent layer. This additional independent layer can be built on any available Web service platform. We have used Apache AXIS for this end.
Keywords :
Internet; XML; authorisation; open systems; protocols; standards; Apache AXIS; Internet applications; SRP based handler; Secure Remote Password protocol; Web service access control; Web services security specifications; XML; confidential data; interoperable standards; software application; Access control; Access protocols; Application software; Authentication; Data security; Information security; Internet; Simple object access protocol; Web services; XML;
Conference_Titel :
Services Computing, 2004. (SCC 2004). Proceedings. 2004 IEEE International Conference on
Print_ISBN :
0-7695-2225-4
DOI :
10.1109/SCC.2004.1357990
