• DocumentCode
    2764210
  • Title

    An investigation on integrating XML-based security into Web services

  • Author

    Doroodchi, Mohmood ; Iranmehr, Azadeh ; Pouriyeh, Seyed Amin

  • Author_Institution
    Cardinal Stritch Univ., CA, USA
  • fYear
    2009
  • fDate
    17-19 March 2009
  • Firstpage
    1
  • Lastpage
    5
  • Abstract
    Web services provide many benefits for developing Web applications based on SOA (Service Oriented Architecture). However, there are some open issues such as security that need to be addressed by standard bodies and technology vendors in order for Web services to become a viable solution for building global service oriented architectures. As a result, much emphasis has been placed on the development of various high-level security standards and protocols, but in many cases the simplest application level attacks have been ignored by the developers. This article covers the dependency of Web services on XML, the various forms of XML-based attacks, famous standards about XML security and finally provides recommendation and countermeasures. This publication tends to provide an understanding of the challenges in integrating information security practices into Web services design and development.
  • Keywords
    Web services; XML; security of data; service-oriented architecture; Web services; XML based security; global service oriented architectures; technology vendors; Security; Web Service; XML;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    GCC Conference & Exhibition, 2009 5th IEEE
  • Conference_Location
    Kuwait City
  • Print_ISBN
    978-1-4244-3885-3
  • Type

    conf

  • DOI
    10.1109/IEEEGCC.2009.5734300
  • Filename
    5734300