Title :
Web service authorization framework
Author :
Ziebermayr, Thomas ; Probst, Stefan
Author_Institution :
Software Competence Center Hagenberg, Germany
Abstract :
Web services represent an important technology for distributed applications and will replace various other technologies for distributed application development soon. A lot of problems of the early days of Web services are solved now. However, for authorization no appropriate solution is available and ready to use. We define requirements for authorization of Web services and investigate existing authorization solutions concerning these requirements. Based on existing authorization solutions and the defined requirements, a Web service authorization framework is developed. We describe concepts and the design of the proposed framework and give an overview of selected implementation aspects (e.g. authorization data access, descriptive deployment). The framework emphasizes easy deployment of Web Service authorization and is ready to use. Practical experience using the framework concludes the paper.
Keywords :
Internet; authorisation; distributed programming; information retrieval; message authentication; Web service authorization; authorization data access; descriptive deployment; distributed applications; security; software applications; Access control; Application software; Authentication; Authorization; Communication system security; Cryptography; Data security; Environmental management; Protocols; Web services;
Conference_Titel :
Web Services, 2004. Proceedings. IEEE International Conference on
Print_ISBN :
0-7695-2167-3
DOI :
10.1109/ICWS.2004.1314789
