Title :
A Security Control Architecture for SOAP-Based Services
Author :
Ouchenne, Boulares ; Koné, Ousmane
Author_Institution :
Univ. of Pau -Bordeaux Acad., Pau, France
Abstract :
Today´s highly dynamic, distributed usage environments, need mechanisms to protect network resources against unauthorized access and unauthorized use. Current contributions in this area follow two main directions: a) users are known and thus service is granted on the basis of user´s identifications, user´s role, etc. b) users are unknown and thus service is granted on the basis of risk evaluation, caused by granting such a service. We deal with a case, where we do not care about the users´ identifications, but rather with local operating conditions of the services. We suggest the design of an architecture for the usage control of SOAP-based services, with dynamic usage restrictions specified only by a dedicated security module involved in the architecture. We present a case study to illustrate the work.
Keywords :
Web services; authorisation; computer network security; message authentication; SOAP based service; Web service; network resource protection; network service; security control architecture; Access control; Computer architecture; Servers; Simple object access protocol; XML; Network services; SOAP; Security Policy;
Conference_Titel :
Emerging Security Information Systems and Technologies (SECURWARE), 2010 Fourth International Conference on
Conference_Location :
Venice
Print_ISBN :
978-1-4244-7517-9
Electronic_ISBN :
978-0-7695-4095-5
DOI :
10.1109/SECURWARE.2010.49
