A Model to Increase the Trust in Service Oriented Architecture

Disregarding any specific IT system, it can be used only when it satisfies security concerns. System security is as important as its functionality because, although it may provide too many features, if users can´t trust to the results and data privacy, system is not reliable at all. Along with increased use of Service Oriented Architecture (SOA) as a preferred paradigm for developing business needs, attackers are motivated to concentrate on founding SOA vulnerabilities more than the past. Prominent specifications in nature of SOA like openness and services autonomy have the most security risks. Although during the past few years, many solutions have been emerged to enforce the security goals, they are not enough to achieve desirable security and we need more researches in this area. In this paper we present two approaches for increasing the trust in SOA. At first, we use a hardware named Trusted Platform Module to increase sensitive data privacy. As the second approach, we propose a mechanism for monitoring service providers´ functionality to ensure that previously verified functionality is not changed by threads.