Name
Abstract | ||
|---|---|---|
Service Oriented Architecture with underlying technologies like web services and web service orchestration opens new vistas for integration among business processes operating in heterogeneous environments. However, such dynamic collaborations require a highly secure environment at each respective business partner site. Existing web services standards address the issue of security only on the service provider platform. The partner platforms to which sensitive information is released have till now been neglected. Remote Attestation is a relatively new field of research which enables an authorized party to verify that a trusted environment actually exists on a partner platform. To incorporate this novel concept in to the web services realm, a new mechanism called WS-Attestation has been proposed. This mechanism provides a structural paradigm upon which more fine-grained solutions can be built. In this paper, we present a novel framework, Behavioral Attestation for Web Services, in which XACML is built on top of WS-Attestation in order to enable more flexible remote attestation at the web services level. We propose a new type of XACML policy called XACML behavior policy, which defines the expected behavior of a partner platform. Existing web service standards are used to incorporate remote attestation at the web services level and a prototype is presented, which implements XACML behavior policy using low-level attestation techniques. |
Year | DOI | Venue |
|---|---|---|
2008 | 10.1145/1456492.1456496 | SWS |
Keywords | Field | DocType |
existing web services standard,web services level,xacml policy,web services realm,partner platform,existing web service standard,remote attestation,web service orchestration,web service,behavioral attestation,xacml behavior policy,web services,service provider,service oriented architecture,business process,col,service level | World Wide Web,Computer security,Computer science,Web standards,Service provider,XACML,Web modeling,Direct Anonymous Attestation,Web service,Database,Service-oriented architecture,WS-Policy | Conference |
Citations | PageRank | References |
13 | 0.75 | 12 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Alam Masoom | 1 | 161 | 18.45 |
| Zhang Xinwen | 2 | 1695 | 104.61 |
| Mohammad Nauman | 3 | 482 | 38.84 |
| Tamleek Ali | 4 | 92 | 8.66 |