Title :
An information flow control approach in composite services
Author :
Bo Yu ; Lin Yang ; Shuhui Chen ; Yongjun Wang ; Linru Ma
Author_Institution :
Coll. of Comput., Nat. Univ. of Defense Technol., Changsha, China
Abstract :
Distributed information flow control has several advantages over centralized information flow control for securing composite services in service oriented environments. In this paper, an approach of distributed information flow control which utilizes security labels to convey control information is considered. At first, security labels are formally defined to describe the control information of information flow control. The computation method of security labels is presented as well. Secondly, a label-based information flow control protocol, namely LBIFC, is presented. This protocol is based on request/decision protocol between service providers. Thirdly, both the theoretical analysis and experimental validation of proposed LBIFC are provided. The results show that our solution not only keeps the security capabilities of information flow control, but also reduces the complexity of flow control protocol in composite services.
Keywords :
protocols; security of data; service-oriented architecture; LBIFC; centralized information flow control; composite services; distributed information flow control approach; label-based information flow control protocol; security labels; service oriented environments; Composite services; Information flow control; Information security; Security label; Service chain;
Conference_Titel :
Information and Communications Technologies (IETICT 2013), IET International Conference on
Conference_Location :
Beijing
Electronic_ISBN :
978-1-84919-653-6
DOI :
10.1049/cp.2013.0061
