The Center for Education and Research in Information Assurance and Security (CERIAS)

The Center for Education and Research in
Information Assurance and Security (CERIAS)
Center for Education and Research in Information Assurance and Security

Access Control Enforcement for Conversation-based Web Services

Download

Download PDF Document
PDF

Author

M. Mecella, M.Ouzzani, F. Paci, E. Bertino

Tech report number

CERIAS TR 2005-79

Entry type

article

Abstract

Service Oriented Computing is emerging as the main approach to build distributed enterprise applications on the Web. The widespread use of Web services is hindered by the lack of adequate security and privacy support. In this paper, we present a novel framework for enforcing access control in conversation-based Web services. Our approach takes into account the conversational nature of Web services. This is in contrast with existing approaches to access control enforcement that assume aWeb service as a set of independent operations. Furthermore, our approach achieves a tradeoff between the need to protect Web service

Download

PDF

Key alpha

Massimo Mecella

Affiliation

University of Roma "La Sapienza", Purdue University, University of Milano

Publication Date

1900-01-01

BibTex-formatted data

To refer to this entry, you may select and copy the text below and paste it into your BibTex document. Note that the text may not contain all macros that BibTex supports.