Smart Security Assessment of Composed Web Services

被引:10
|
作者
Kolaczek, Grzegorz [1 ]
Juszczyszyn, Krzysztof [1 ]
机构
[1] Wroclaw Univ Technol, Inst Comp Sci, PL-50370 Wroclaw, Poland
来源
CYBERNETICS AND SYSTEMS | 2010年 / 41卷 / 01期
关键词
multi-agent systems; security; web services;
D O I
10.1080/01969720903408797
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
As more and more organizations use Service-Oriented Architecture (SOA) to design and implement their information systems the systems' architects also need more intelligent and reliable tools. The complexity, modularity, and heterogeneity of the information systems make the security evaluation a difficult process. In this work, we propose a method for the assesment and optimization of a security level of composed web services, assuming layered security architecture and the multi-agent approach. As the security evaluation requires the precise definition of the set of evaluation criteria, the basic criteria for each functional layer of SOA have been presented. An information fusion scheme, based on subjective logic formalism, was proposed to gather information coming from different layers and agents.
引用
收藏
页码:46 / 61
页数:16
相关论文
共 50 条
  • [41] A performance modelling of web services security
    Tang, Kezhe
    Levy, David
    Chen, Shiping
    Zic, John
    Yan, Bo
    WEBIST 2007: PROCEEDINGS OF THE THIRD INTERNATIONAL CONFERENCE ON WEB INFORMATION SYSTEMS AND TECHNOLOGIES, VOL IT: INTERNET TECHNOLOGY, 2007, : 64 - +
  • [42] Towards a Process for Web Services Security
    Gutiérrez, C
    Fernández-Medina, E
    Piattini, M
    JOURNAL OF RESEARCH AND PRACTICE IN INFORMATION TECHNOLOGY, 2006, 38 (01): : 57 - 67
  • [43] TulaFale: A security tool for web services
    Bhargavan, K
    Fournet, C
    Gordon, AD
    Pucella, R
    FORMAL METHODS FOR COMPONENTS AND OBJECTS, 2003, 3188 : 197 - 222
  • [44] The subtle security risks of web services
    Herbert H. Thompson
    Datenschutz und Datensicherheit - DuD, 2006, 30 (10) : 604 - 606
  • [45] A framework for enhancing web services security
    Sidharth, Navya
    Liu, Jigang
    COMPSAC 2007: THE THIRTY-FIRST ANNUAL INTERNATIONAL COMPUTER SOFTWARE AND APPLICATIONS CONFERENCE, VOL I, PROCEEDINGS, 2007, : 23 - +
  • [46] Web services security, composition, and discovery
    Zhang, Liang-Jie
    INTERNATIONAL JOURNAL OF WEB SERVICES RESEARCH, 2008, 5 (01) : I - II
  • [47] Standards for XML and Web services security
    Naedele, M
    COMPUTER, 2003, 36 (04) : 96 - 98
  • [48] Security concerns for web services and applications
    Encheva, S
    Tumin, S
    ADVANCES IN COMPUTER SCIENCE - ASIAN 2005, PROCEEDINGS: DATA MANAGEMENT ON THE WEB, 2005, 3818 : 261 - 262
  • [49] Security and privacy for web databases and services
    Ferrari, E
    Thuraisingham, B
    ADVANCES IN DATABASE TECHNOLOGY - EDBT 2004, PROCEEDINGS, 2004, 2992 : 17 - 28
  • [50] Security personalization for internet and web services
    Yee, George O. M.
    Korba, Larry
    INTERNATIONAL JOURNAL OF WEB SERVICES RESEARCH, 2008, 5 (01) : 1 - 23
12345