An extended XACML model to ensure secure information access for web services

被引:5
|
作者
Chou, Shih-Chien [1 ]
Huang, Chun-Hao [1 ]
机构
[1] Natl Dong Hwa Univ, Dept Comp Sci & Informat Math, Hsinchu, Taiwan
来源
JOURNAL OF SYSTEMS AND SOFTWARE | 2010年 / 83卷 / 01期
关键词
Web service; Information flow control; Security; Prevent information leakage; OBJECT-ORIENTED SYSTEMS; FLOW CONTROL;
D O I
10.1016/j.jss.2009.06.045
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
More and more software systems based on web services have been developed. Web service development techniques are thus becoming crucial. To ensure secure information access, access control should be taken into consideration when developing web services. This paper proposes an extended XACML model named EXACML to ensure secure information access for web services. It is based on the technique of information flow control. Primary features offered by the model are: (1) both the information of requesters and that of web services are protected, (2) the access control of web services is more precise than just "allow or reject" policy in existing models, and (3) the model will deny non-secure information access during the execution of a web service even when a requester is allowed to invoke the web service. (C) 2009 Elsevier Inc. All rights reserved.
引用
收藏
页码:77 / 84
页数:8
相关论文
共 50 条
  • [41] An extended Web Services framework
    Dogdu, E
    PROCEEDINGS OF THE IASTED INTERNATIONAL CONFERENCE ON COMMUNICATIONS, INTERNET, AND INFORMATION TECHNOLOGY, 2002, : 455 - 460
  • [42] A practical approach to secure web services
    Xu, Jie
    Yang, Erica Y.
    Bennett, Keith H.
    NINTH IEEE INTERNATIONAL SYMPOSIUM ON OBJECT AND COMPONENT-ORIENTED REAL-TIME DISTRIBUTED COMPUTING, PROCEEDINGS, 2006, : 512 - 519
  • [43] A Method to Secure Data on Web Database with Web Services
    Rameaux, Wangue
    Zhao, Fengyu
    PROCEEDINGS OF THE INTERNATIONAL CONFERENCE ON LOGISTICS, ENGINEERING, MANAGEMENT AND COMPUTER SCIENCE, 2014, 101 : 1181 - 1187
  • [44] Taking steps to secure Web services
    Geer, D
    COMPUTER, 2003, 36 (10) : 14 - 16
  • [45] Secure Composition of Cascaded Web Services
    Shafiq, Basit
    Chun, Soon
    Vaidya, Jaideep
    Badar, Nazia
    Adam, Nabil
    PROCEEDINGS OF THE 2012 8TH INTERNATIONAL CONFERENCE ON COLLABORATIVE COMPUTING: NETWORKING, APPLICATIONS AND WORKSHARING (COLLABORATECOM 2012), 2012, : 137 - 146
  • [46] An attribute-based access control model for Web services
    Shen Hai-bo
    Hong Fan
    SEVENTH INTERNATIONAL CONFERENCE ON PARALLEL AND DISTRIBUTED COMPUTING, APPLICATIONS AND TECHNOLOGIES, PROCEEDINGS, 2006, : 74 - +
  • [47] Access control model for web services with attribute disclosure restriction
    Mewar, Vipin Singh
    Aich, Subhendu
    Sural, Shamik
    ARES 2007: SECOND INTERNATIONAL CONFERENCE ON AVAILABILITY, RELIABILITY AND SECURITY, PROCEEDINGS, 2007, : 524 - +
  • [48] Secure Framework for Web Services Communication
    Tanwar, Jitender
    Sharma, Sanjay Kumar
    Mittal, Mandeep
    2018 INTERNATIONAL CONFERENCE ON AUTOMATION AND COMPUTATIONAL ENGINEERING (ICACE), 2018, : 187 - 190
  • [49] An attribute and role based access control model for web services
    Liu, M
    Guo, HQ
    Su, JD
    PROCEEDINGS OF 2005 INTERNATIONAL CONFERENCE ON MACHINE LEARNING AND CYBERNETICS, VOLS 1-9, 2005, : 1302 - 1306
  • [50] Access to information on the Web
    Giles, L
    Lawrence, S
    Krovetz, B
    SCIENCE, 1998, 280 (5371) : 1815 - +
12345