Name
Abstract | ||
|---|---|---|
Web Services and SOA provide interoperability and architectural baseline for flexible and dynamic cross enterprise collaborations, where execution and use of the participating services contributes to the common objective. Relationships within these collaborations are complex, with services joining and leaving throughout the life cycle, or the same services being offered in several collaborations simultaneously. This provides strong requirements for federated security, where integrity and confidentiality of the collaboration must be maintained through membership control, security policy enforcement and separation of web service instance interactions in different collaborations. In this paper we propose a new Web Services (WS) framework for managing and controlling WS interactions in a federated environment, leveraging on platform virtualisation architecture and the functionalities provided by trusted secure hardware. The framework allows configuring policies that define collaboration membership, and enforce access to the collaboration per-WS instance. In addition, since the access to the configurations is restricted, it provides masterslave model where only authorised administrative entity can modify any of the above - either at the deployment or at the execution time. Some of the benefits of the proposed approach are: fine-grained external exposure of WSs, a flexible model for group membership control and revocation and hardware-enabled secure virtualised system providing functional process isolation and strong data security. |
Year | DOI | Venue |
|---|---|---|
2007 | 10.1145/1314418.1314430 | SWS |
Keywords | Field | DocType |
security policy enforcement,tpm virtualisation,membership control,different collaboration,federated security,ws interaction,group membership control,collaboration per-ws instance,collaboration membership,secure web service federation,dynamic cross enterprise collaboration,strong data security,trusted computing,web service,security policy,web services,security,life cycle | Data mining,Services computing,Data security,Trusted Computing,Computer science,Computer security,Interoperability,Web application security,Web service,Database,WS-Policy,Process isolation | Conference |
Citations | PageRank | References |
1 | 0.35 | 17 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Srijith K. Nair | 1 | 375 | 22.16 |
| Ivan Djordjevic | 2 | 51 | 5.26 |
| Bruno Crispo | 3 | 1829 | 237.11 |
| Theo Dimitrakos | 4 | 486 | 37.89 |