A New Quantitative Model for Web Service Security

被引:0
|
作者
Banaei, Omid [1 ]
Khorsandi, Siavash [1 ]
机构
[1] Amirkabir Univ Technol, Tehran Polytech, Comp Engn & Informat Technol Dept, Tehran, Iran
来源
PROCEEDINGS OF 2012 IEEE 14TH INTERNATIONAL CONFERENCE ON COMMUNICATION TECHNOLOGY | 2012年
关键词
component; Security; Web Service; SOA; Risk Analysis;
D O I
暂无
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
Security is one of important QoS properties of web services that need to be quantified. Quantifying Security can help both in selecting among published web services and also in assessing security weaknesses of services by service providers. In this paper we propose a three level hierarchical architecture for web service security. In this architecture we consider all of important aspects of security that they are: authentication, integrity, authorization, confidentiality, availability and non-repudiation. For each aspect is considered the most important web service threats. Furthermore we consider likelihood and impact factor for each threat. Then we compute weight of each impact with using AHP and finally total security index is computed with weighted averaging.
引用
收藏
页码:749 / 755
页数:7
相关论文
共 50 条
  • [1] A Survey on Quantitative Evaluation of Web Service Security
    Zhou, Bo
    Shi, Qi
    Yang, Po
    [J]. 2016 IEEE TRUSTCOM/BIGDATASE/ISPA, 2016, : 715 - 721
  • [2] A security model design in Web Service environment
    Zhang, M
    Cheng, ZP
    Ma, ZJ
    Zang, BY
    [J]. FIFTH INTERNATIONAL CONFERENCE ON COMPUTER AND INFORMATION TECHNOLOGY - PROCEEDINGS, 2005, : 736 - 740
  • [3] GroupSec: A New Security Model For The Web
    Sevilla, Spencer
    Garcia-Luna-Aceves, J. J.
    Sadjadpour, Hamid
    [J]. 2017 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS (ICC), 2017,
  • [4] Web service security model using CBD architecture
    Park, Eun-Ju
    Kim, Haeng-Kon
    Lee, Roger Y.
    [J]. SERA 2007: 5TH ACIS INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING RESEARCH, MANAGEMENT, AND APPLICATIONS, PROCEEDINGS, 2007, : 346 - +
  • [5] Research on a Web Security Service System Structure Model
    Ma, Ke
    Song, Chang-xin
    [J]. 2008 INTERNATIONAL CONFERENCE ON ADVANCED COMPUTER THEORY AND ENGINEERING, 2008, : 884 - 887
  • [6] Web service security
    Damiani, Ernesto
    Gianini, Gabriele
    Maruyama, Hiroshi
    [J]. COMPUTER SYSTEMS SCIENCE AND ENGINEERING, 2006, 21 (05): : 323 - 323
  • [7] A New Description Model of Web Service
    Wu, Shaofei
    [J]. 2009 INTERNATIONAL CONFERENCE ON INDUSTRIAL AND INFORMATION SYSTEMS, PROCEEDINGS, 2009, : 77 - 79
  • [8] A New Model For Web Service Composition
    Hao, Long
    [J]. ADVANCED RESEARCH ON INFORMATION SCIENCE, AUTOMATION AND MATERIAL SYSTEM, PTS 1-6, 2011, 219-220 : 638 - 642
  • [9] Online discovery of quantitative model for web service management
    Chen, J
    Yin, XC
    Zhang, SP
    [J]. ADVANCES IN NATURAL COMPUTATION, PT 2, PROCEEDINGS, 2005, 3611 : 539 - 542
  • [10] Design of A New Web Database Security Model
    Zhu Yangqing
    Yu Hui
    Li Hua
    Zeng Lianming
    [J]. PROCEEDINGS OF THE SECOND INTERNATIONAL SYMPOSIUM ON ELECTRONIC COMMERCE AND SECURITY, VOL I, 2009, : 292 - +
12345