An extended XACML model to ensure secure information access for web services

被引:5
|
作者
Chou, Shih-Chien [1 ]
Huang, Chun-Hao [1 ]
机构
[1] Natl Dong Hwa Univ, Dept Comp Sci & Informat Math, Hsinchu, Taiwan
来源
JOURNAL OF SYSTEMS AND SOFTWARE | 2010年 / 83卷 / 01期
关键词
Web service; Information flow control; Security; Prevent information leakage; OBJECT-ORIENTED SYSTEMS; FLOW CONTROL;
D O I
10.1016/j.jss.2009.06.045
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
More and more software systems based on web services have been developed. Web service development techniques are thus becoming crucial. To ensure secure information access, access control should be taken into consideration when developing web services. This paper proposes an extended XACML model named EXACML to ensure secure information access for web services. It is based on the technique of information flow control. Primary features offered by the model are: (1) both the information of requesters and that of web services are protected, (2) the access control of web services is more precise than just "allow or reject" policy in existing models, and (3) the model will deny non-secure information access during the execution of a web service even when a requester is allowed to invoke the web service. (C) 2009 Elsevier Inc. All rights reserved.
引用
收藏
页码:77 / 84
页数:8
相关论文
共 50 条
  • [21] SIDECACHE: Information access, management and dissemination framework for web services
    Doderer M.S.
    Burkhardt C.
    Robbins K.A.
    BMC Research Notes, 4 (1)
  • [22] Access Control and Information Flow Control for Web Services Security
    Kedjar, Saadia
    Tari, Abdelkamel
    Bertok, Peter
    INTERNATIONAL JOURNAL OF INFORMATION TECHNOLOGY AND WEB ENGINEERING, 2016, 11 (01) : 44 - 76
  • [23] Secure sessions for web services
    Bhargavan, Karthikeyan
    Corin, Ricardo
    Fournet, Cedric
    Gordon, Andrew D.
    ACM TRANSACTIONS ON INFORMATION AND SYSTEM SECURITY, 2007, 10 (02)
  • [24] Secure Web Services Negotiation
    Mohanty, Vakul
    Hota, Chittaranjan
    TRENDS IN COMPUTER SCIENCE, ENGINEERING AND INFORMATION TECHNOLOGY, 2011, 204 : 609 - 618
  • [25] Secure authorisation for web services
    Indrakanti, S
    Varadharajan, V
    Hitchens, M
    Kumar, A
    DATA AND APPLICATIONS SECURITY XVII: STATUS AND PROSPECTS, 2004, 142 : 163 - 175
  • [26] New XACML-AspectBPEL approach for composite web services security
    Ayoubi, Sara
    Mourad, Azzam
    Otrok, Hadi
    Shahin, Ahmad
    INTERNATIONAL JOURNAL OF WEB AND GRID SERVICES, 2013, 9 (02) : 127 - 145
  • [27] An access control model for web services in business process
    Liu, P
    Chen, Z
    IEEE/WIC/ACM INTERNATIONAL CONFERENCE ON WEB INTELLIGENCE (WI 2004), PROCEEDINGS, 2004, : 292 - 298
  • [28] ACCONV - An Access Control Model for Conversational Web Services
    Paci, Federica
    Mecella, Massimo
    Ouzzani, Mourad
    Bertino, Elisa
    ACM TRANSACTIONS ON THE WEB, 2011, 5 (03)
  • [29] Performance Assessment of XACML Authorizations for Supply Chain Traceability Web Services
    Pardal, Miguel L.
    Harrison, Mark
    Sarma, Sanjay
    Marques, Jose Alves
    2012 FOURTH INTERNATIONAL CONFERENCE ON COMPUTATIONAL ASPECTS OF SOCIAL NETWORKS (CASON), 2012, : 378 - 383
  • [30] Fine-Grained Filtering of Data Providing Web Services with XACML
    Brown, Kevin P.
    Hayes, Michael A.
    Allison, David S.
    Capretz, Miriam A. M.
    Mann, Rupinder
    2012 IEEE 21ST INTERNATIONAL WORKSHOP ON ENABLING TECHNOLOGIES: INFRASTRUCTURE FOR COLLABORATIVE ENTERPRISES (WETICE), 2012, : 438 - 443
12345