Abstract
Web Services enables communication between applications with a less working out on the underlying mechanics of communication. This paper provides a brief introduction to security concepts and describes in detail various specifications related to security among WS-* family and association among those specifications. Web Service Standards available do not completely address security for web services. In this paper we have proposed a framework that consists of components which could secure web service interactions facilitating interoperability between various WS-* security standards, by devising a collaborative security standard based on the associability of WS-* security standards and can be furthermore customized by optimizing the selection and projection functions of standard list and parameter list. The parameter list is again formulated by clear understanding of association of the WS-* security standards.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Sinha, S., Sinha, S.K., Purkayastha, B.S.: Security Issues in Web Services: A Review and Development Approach of Research Agenda. AUJST: Physical Sciences and Technology 5(II) (2010)
Zhang, Y., Sun, C., Yang, J., Wang,Y.: Web Services Security Policy. In: International Conf. on Multimedia Information Networking and Security (2010)
Liu, W.-j., Li,Y.: Research and Implementation Based on Web Services Security Model. In: International Conference on Innovative Communication and Asia-Pacific Conference on Information Technology and Ocean Engineering (2010)
Nortbotten, N.A.: XML and Web Service Security Standards, IEEE Communications Surver & Tutorials, 3 (Third Quarter 2009)
Kadry, S., Smaili, K.: A Solutions for Authentication of Web Services Users. Information Technology Journal 6(7), 987–995 (2007)
Geuer-Pollman, C., Calessens, J.: Web Services & Web Services Security Standards. Information Security Technical Report, 10, 15–24, Published by Elsevier (2005)
WSDL Binding for SOAP 1.2, http://schemas.xmlsoap.org/wsdl/soap12/soap12WSDL.htm
WS-SecurityPolicy 1.2 (July 1, 2007), http://docs.oasis-open.org/ws-sx/ws-securitypolicy/200702/ws-securitypolicy-1.2-spec-os.html
Web Service Policy 1.5 Framework, W3 Recommendations, 4 (September 2007), http://www.w3.org/TR/2007/REC-ws-policy-20070904
WS-SecureConversation 1.3, OASIS Standard (March 1,2007), http://docs.oasis-open.org/ws-sx/ws-secureconversation/200512/ws-secureconversation-1.3-os.html
WS-Trust 1.3, OASIS Standard (March 19, 2007), http://docs.oasis-open.org/ws-sx/ws-trust/200512/ws-trust-1.3-os.html
Web Services Security: SOAP Message Security1.0 (WS-Security 2004), OASIS Standard (March 01, 2004), http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0
Chakhar, S., Haddad, S., Mokdad, L., Mousseau, V., Youcef, S.: Multicriteria Evaluation-Based Conceptual Framework for Composite Web Service selection, http://basepub.dauphine.fr/bitstream/handle/123456789/5283/multicriteria_mokdad.PDF?sequence=2
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Priyadharshini, M., Baskaran, R., Srinivasan, M.K., Rodrigues, P. (2011). A Framework for Securing Web Services by Formulating an Collaborative Security Standard among Prevailing WS-* Security Standards. In: Abraham, A., Mauri, J.L., Buford, J.F., Suzuki, J., Thampi, S.M. (eds) Advances in Computing and Communications. ACC 2011. Communications in Computer and Information Science, vol 193. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-22726-4_29
Download citation
DOI: https://doi.org/10.1007/978-3-642-22726-4_29
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-22725-7
Online ISBN: 978-3-642-22726-4
eBook Packages: Computer ScienceComputer Science (R0)