DocumentCode
2764210
Title
An investigation on integrating XML-based security into Web services
Author
Doroodchi, Mohmood ; Iranmehr, Azadeh ; Pouriyeh, Seyed Amin
Author_Institution
Cardinal Stritch Univ., CA, USA
fYear
2009
fDate
17-19 March 2009
Firstpage
1
Lastpage
5
Abstract
Web services provide many benefits for developing Web applications based on SOA (Service Oriented Architecture). However, there are some open issues such as security that need to be addressed by standard bodies and technology vendors in order for Web services to become a viable solution for building global service oriented architectures. As a result, much emphasis has been placed on the development of various high-level security standards and protocols, but in many cases the simplest application level attacks have been ignored by the developers. This article covers the dependency of Web services on XML, the various forms of XML-based attacks, famous standards about XML security and finally provides recommendation and countermeasures. This publication tends to provide an understanding of the challenges in integrating information security practices into Web services design and development.
Keywords
Web services; XML; security of data; service-oriented architecture; Web services; XML based security; global service oriented architectures; technology vendors; Security; Web Service; XML;
fLanguage
English
Publisher
ieee
Conference_Titel
GCC Conference & Exhibition, 2009 5th IEEE
Conference_Location
Kuwait City
Print_ISBN
978-1-4244-3885-3
Type
conf
DOI
10.1109/IEEEGCC.2009.5734300
Filename
5734300
Link To Document