Security Broker—A Complementary Tool for SOA Security

2011 ◽  
Author(s):  
R. Kamatchi ◽  
Atanu Rakshit ◽  
Theodore E. Simos ◽  
George Psihoyios ◽  
Ch. Tsitouras ◽  
...  
Keyword(s):  
Soa Security

Developing Proactive Security Dimensions for SOA

2011 ◽  
pp. 254-276
Author(s):  
Hany F. EL Yamany ◽  
David S. Allison ◽  
Miriam A.M. Capretz
Keyword(s):  
Service Oriented Architecture ◽  
Security Services ◽  
Security Service ◽  
Service Oriented ◽  
Service Consumer ◽  
Web Services Security ◽  
Soa Security ◽  
Security Standards

Security is one of the largest challenges facing the development of a Service-Oriented Architecture (SOA). This is due to the fact that SOA security is the responsibility of both the service consumer and service provider. In recent years, many solutions have been implemented, such as the Web Services Security Standards, including WS-Security and WS-SecurityPolicy. However, those standards are insufficient for the promising new generations of Web 2.0 applications. In this research, we describe an Intelligent SOA Security (ISOAS) framework and introduce four of its services: Authentication and Security Service (NSS), the Authorization Service (AS), the Privacy Service (PS) and the Service of Quality of Security Service (SQoSS). Furthermore, a case study is presented to examine the behavior of the described security services inside a market SOA environment.

A New Soa Security Model to Protect Against Web Competitive Intelligence Attacks by Software Agents

2009 ◽  
Vol 3 (4) ◽  
pp. 18-28
Author(s):  
Hamidreza Amouzegar ◽  
Mohammad Jafar Tarokh ◽  
Anahita Naghilouye Hidaji
Keyword(s):  
Business Model ◽  
Software Agents ◽  
Software Agent ◽  
Competitive Intelligence ◽  
Security Model ◽  
Customer Base ◽  
Web Environment ◽  
Important Approach ◽  
Soa Security ◽  
To Come

This article presents an automata SOA based security model against competitive intelligence attacks in e-commerce. It focuses on how to prevent conceptual interception of an e-firm business model from CI agent attackers. Since competitive intelligence web environment is a new important approach for all e-commerce based firms, they try to come in new marketplaces and need to find a good customer-base in contest with other existing competitors. Many of the newest methods for CI attacks in web position are based on software agent facilities. Many researchers are currently working on how to facilitate CI creation in this environment. The aim of this paper is to help e-firm designers provide a non-predictable presentation layer against CI attacks.

Data provenance in SOA: security, reliability, and integrity

2007 ◽  
Vol 1 (4) ◽  
pp. 223-247 ◽  
Author(s):  
W. T. Tsai ◽  
Xiao Wei ◽  
Yinong Chen ◽  
Ray Paul ◽  
Jen-Yao Chung ◽  
...  
Keyword(s):  
Data Provenance ◽  
Soa Security

Methodology and Tools for End-to-End SOA Security Configurations

2008 ◽  
Author(s):  
Fumiko Satoh ◽  
Yuichi Nakamura ◽  
Nirmal K. Mukhi ◽  
Michiaki Tatsubori ◽  
Kouichi Ono
Keyword(s):  
End To End ◽  
Soa Security

Security in Service Oriented Architectures

2010 ◽  
pp. 187-211
Author(s):  
Anne V.D.M. Kayem
Keyword(s):  
Web Services ◽  
Information Exchange ◽  
Mitigation Strategies ◽  
Security Architecture ◽  
Security Model ◽  
Service Oriented Architectures ◽  
Security Standard ◽  
Service Oriented ◽  
Soa Security ◽  
Security Standards

Service Oriented Architectures (SOAs) have become the defacto standard for defining interoperable architectures on the web with the most common implementation of this concept being in the form of web services. Information exchange is an integral part of SOAs, so designing effective security architectures that ensure data confidentiality and integrity is important. However, selecting a security standard for the architecture is challenging because existing solutions are geared toward access control in relatively static scenarios rather than dynamic scenarios where some form of adaptability is needed. Moreover, when services interact across different domains interoperability becomes a problem because of the lack a consistent security model to handle service interactions. This chapter presents a comparative analysis of SOA security standards. The authors discuss the challenges SOA security architecture designers face, in relation to an example travel agent web services scenario, and outline potential mitigation strategies.

Sign in / Sign up

Export Citation Format

Share Document