A security architecture for data privacy and security

Author

Weaver, Alfred C.

Author_Institution

Dept. of Comput. Sci., Virginia Univ., Charlottesville, VA

Volume

1

fYear

2005

fDate

19-22 Sept. 2005

Lastpage

676

Abstract

Data access and software exchange are often achieved over insecure networks such as the public Internet. System designers are therefore forced to be proactive with regard to verifying the identity of both human users and software processes that request access to protected resources such as factory data. In this paper we show a new security architecture based upon Web services that supports authentication, authorization, and federation. Authentication verifies identity and generates a security token; authorization determines which privileges are allowed to which users; federation permits secure and reliable exchanges of identity across disparate trust domains. We illustrate how these ideas can be used to secure access to a factory Web portal and its underlying database of process data

Keywords

Internet; authorisation; data privacy; message authentication; portals; Internet; Web portal; Web services; authorization; data access; data privacy; message authentication; security architecture; software exchange; Authentication; Authorization; Computer architecture; Data privacy; Data security; Humans; IP networks; Production facilities; Protection; Service oriented architecture;

fLanguage

English

Publisher

ieee

Conference_Titel

Emerging Technologies and Factory Automation, 2005. ETFA 2005. 10th IEEE Conference on

Conference_Location

Catania

Print_ISBN

0-7803-9401-1

Type

conf

DOI

10.1109/ETFA.2005.1612589

Filename

1612589