3PAC: Enforcing access policies for web services

被引:0
|
作者
van Bemmel, J [1 ]
Wegdam, M [1 ]
Lagerberg, K [1 ]
机构
[1] Bell Labs Adv Technol EMEA Twente, Lucent Technol, NL-7521 PL Enschede, Netherlands
来源
2005 IEEE International Conference on Web Services, Vols 1 and 2, Proceedings | 2005年
关键词
Web Services security; policy enforcement; distributed access control;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Web Services fail to deliver on the promise of ubiquitous deployment and seamless interoperability due to the lack of a uniform, standards-based approach to all aspects of security. In particular, the enforcement of access policies in a Service Oriented Architecture is not addressed adequately. We present a novel approach to the distribution and enforcement of credentials-based access policies for Web Services (3PAC) which scales well and can be implemented in existing deployments.
引用
收藏
页码:589 / 596
页数:8
相关论文
共 50 条
  • [1] Enforcing Role-Based Access Control Policies in Web Services with UML and OCL
    Sohr, Karsten
    Mustafa, Tanveer
    Bao, Xinyu
    Ahn, Gail-Joon
    24TH ANNUAL COMPUTER SECURITY APPLICATIONS CONFERENCE, PROCEEDINGS, 2008, : 257 - +
  • [2] A Web Service Architecture for Enforcing Access Control Policies
    Ardagna, Claudio Agostino
    Damiani, Ernesto
    di Vimercati, Sabrina De Capitani
    Samarati, Pierangela
    ELECTRONIC NOTES IN THEORETICAL COMPUTER SCIENCE, 2006, 142 : 47 - 62
  • [3] EPICS: A Framework for Enforcing Security Policies in Composite Web Services
    Ranchal, Rohit
    Bhargava, Bharat
    Angin, Pelin
    ben Othmane, Lotfi
    IEEE TRANSACTIONS ON SERVICES COMPUTING, 2019, 12 (03) : 415 - 428
  • [4] Specification of access control policies for web services
    Liu, Miao
    Zhang, Wei
    Liu, Huai-Liang
    CIS WORKSHOPS 2007: INTERNATIONAL CONFERENCE ON COMPUTATIONAL INTELLIGENCE AND SECURITY WORKSHOPS, 2007, : 472 - 475
  • [5] Behavioral Attestation for Web Services using access policies
    Alam, Masoom
    Zhang, Xinwen
    Nauman, Mohammad
    Ali, Tamleek
    Ali, Muhammad
    Anwar, Sajid
    Alam, Quratulain
    MULTIMEDIA TOOLS AND APPLICATIONS, 2013, 66 (02) : 283 - 302
  • [6] Behavioral Attestation for Web Services using access policies
    Masoom Alam
    Xinwen Zhang
    Mohammad Nauman
    Tamleek Ali
    Muhammad Ali
    Sajid Anwar
    Quratulain Alam
    Multimedia Tools and Applications, 2013, 66 : 283 - 302
  • [7] Field access analysis for enforcing access control policies
    Lehmann, Kathrin
    Thiemann, Peter
    EMERGING TRENDS IN INFORMATION AND COMMUNICATION SECURITY, PROCEEDINGS, 2006, 3995 : 337 - 351
  • [8] An approach to automating the integration of the Access Control Policies for Web Services
    Alodib, Mohammed
    2013 14TH ACIS INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING, ARTIFICIAL INTELLIGENCE, NETWORKING AND PARALLEL/DISTRIBUTED COMPUTING (SNPD 2013), 2013, : 181 - 187
  • [9] Access Control Policies for Web Services in Medical Aid System
    Kuang, Li-Qun
    Zhang, Yuan
    Han, Xie
    2009 INTERNATIONAL CONFERENCE ON INFORMATION MANAGEMENT, INNOVATION MANAGEMENT AND INDUSTRIAL ENGINEERING, VOL 2, PROCEEDINGS, 2009, : 167 - 170
  • [10] Specification of access control and certification policies for semantic web services
    Agarwal, S
    Sprick, B
    E-COMMERCE AND WEB TECHNOLOGIES, PROCEEDINGS, 2005, 3590 : 348 - 357
12345