Trust-Based Security Model and Enforcement Mechanism for Web Service Technology

Seokwon Yang, Herman Lam and Stanley Y. W. Su

View Related Documents

Journal Article
Ws-AC: A Fine Grained Access Control System for Web Services
Elisa Bertino, Anna C. Squicciarini, Ivan Paloscia and Lorenzo Martino
World Wide Web, 2006, Volume 9, Number 2, Pages 143-171
- Download PDF (3.8 MB)
- View HTML
Book Chapter
Contributions of Landscape Sciences to the Development of Environmental Security
Felix Müller, K. Bruce Jones, Kinga Krauze, Bai-Lian Li and Sergey Victorov, et al.
NATO Science for Peace and Security Series C: Environmental Security, 2007, Use of Landscape Sciences for the Assessment of Environmental Security, Part I, Pages 1-17
- Download PDF (273.9 KB)
Book Chapter
Security Debates in East Asia since the End of the Cold War
Eun-Jeung Lee
Hexagon Series on Human and Environmental Security and Peace, 1, Volume 3, Globalization and Environmental Challenges, Part VIII, Pages 829-838
- Download PDF (294.6 KB)
Book Chapter
Web Services Framework for Geo-spatial Services
Minsoo Kim, Mijeong Kim, Eunkyu Lee and Inhak Joo
Lecture Notes in Computer Science, 2005, Volume 3428, Web and Wireless Geographical Information Systems, Pages 165-181
- Download PDF (390.5 KB)
Book Chapter
Verifying and Enhancing the Correctness of the Dynamic Composite Web Service
N. Sasikaladevi and L. Arockiam
Communications in Computer and Information Science, 1, Volume 142, Computer Networks and Information Technologies, Part 3, Pages 431-433
- Download PDF (173.1 KB)
Book Chapter
Potential of Solar Thermal Desalination to Defuse Water as a Conflict Issue in the Middle East
Proposal for Functional Cooperation in the Gulf of Aqaba
Hans Günter Brauch
NATO Security through Science Series, 2006, Environmental Security and Environmental Management: The Role of Risk Assessment, Pages 25-48
- Download PDF (518.5 KB)
Book Chapter
POTENTIAL OF SOLAR THERMAL DESALINATION TO DEFUSE WATER AS A CONFLICT ISSUE IN THE MIDDLE EAST Proposal for Functional Cooperation in the Gulf of Aqaba
HANS GÜNTER BRAUCH
NATO Security through Science Series, 2006, Environmental Security and Environmental Management: The Role of Risk Assessment, Pages 25-48
- Download PDF (6.0 MB)
Book Chapter
DESERTIFICATION – A NEW SECURITY CHALLENGE FOR THE MEDITERRANEAN? Policy agenda for recognising and coping with fatal outcomes of global environmental change and potentially violent societal consequences
Hans Günter Brauch
NATO Security through Science Series, 2005, Volume 3/2006, Desertification in the Mediterranean Region. A Security Issue, Pages 11-85
- Download PDF (1.2 MB)
Book Chapter
Attacking Confidentiality: An Agent Based Approach
Kapil Kumar Gupta, Baikunth Nath, Kotagiri Ramamohanarao and Ashraf U. Kazi
Lecture Notes in Computer Science, 2006, Volume 3975, Intelligence and Security Informatics, Pages 285-296
- Download PDF (180.3 KB)
Book Chapter
From Features Extraction to Strong Security in Mobile Environment: A New Hybrid System
Stéphane Cauchie, Thierry Brouard and Hubert Cardot
Lecture Notes in Computer Science, 2006, Volume 4277, On the Move to Meaningful Internet Systems 2006: OTM 2006 Workshops, Pages 489-498
- Download PDF (544.3 KB)

Abstract

The emerging Web service technology has enabled the development of Internet-based applications that integrate distributed and heterogeneous systems and processes which are owned by different organizations. Compared to centralized systems and client-server environments, the Web service environment is much more dynamic and security for such an environment poses unique challenges. For example, an organization (e.g., a service provider or a service broker) cannot predetermine the users of its resources and fix their access privileges. Also, service providers come and go. The users of services must have some assurances about the services and the organizations that provide the services. Thus, the enforcement of security constraints cannot be static and tightly coupled. The notion of trust agreement must be established to delegate the responsibility of certification of unknown users, services, and organizations. In this paper, we describe a Trust-based Security Model (TSM) that incorporate the traditional security concepts (e.g., roles, resources, operations) with new security concepts that are specific to the Web service environment. The security concepts of TSM are then applied to the general Web service model to include security considerations. Finally, an event-driven, rule-based approach to the enforcement of security in a Web service environment is described.

Fulltext Preview

Image of the first page of the fulltext document

Frequently asked questions General info on journals and books Send us your feedback Impressum Contact us

SpringerLink

Trust-Based Security Model and Enforcement Mechanism for Web Service Technology

View Related Documents

Abstract

Fulltext Preview