Service Oriented Security Architecture
Abstract
As Service Oriented Architectures (SOA) and Web services are becoming widely deployed, the issue of security is far from being solved. In an attempt to address this issue, the industry proposed several extensions to the SOAP protocol that currently reached different levels of standardization. However, no architectural guidelines have yet been proposed. In this paper we first outline the security challenges and the specifications that address these challenges and then present our concept the Service Oriented Security Architecture—SOSA. We argue that the different security functions (authentication, authorization, audit, etc.) should be realized as different stand-alone Web services These security services can then be chained together by means of Enterprise Application Integration (EAI) techniques such as message routing on Enterprise Services Buses (ESB). Next, we will present a prototypical implementation of this framework and describe our experiences so far. We show that by distributing the security functions, a more flexible architecture can be designed that would lower the costs associated with implementation, administration and maintenance.
- Citation
- BibTeX
Opincaru, C. & Gheorghe, G.,
(2009).
Service Oriented Security Architecture.
Enterprise Modelling and Information Systems Architectures - An International Journal: Vol. 4, Nr. 1.
Berlin:
Gesellschaft für Informatik e.V..
(S. 39-48).
DOI: 10.18417/emisa.4.1.4
@article{mci/Opincaru2009,
author = {Opincaru, Cristian AND Gheorghe, Gabriela},
title = {Service Oriented Security Architecture},
journal = {Enterprise Modelling and Information Systems Architectures - An International Journal},
volume = {4},
number = {1},
year = {2009},
,
pages = { 39-48 } ,
doi = { 10.18417/emisa.4.1.4 }
}
author = {Opincaru, Cristian AND Gheorghe, Gabriela},
title = {Service Oriented Security Architecture},
journal = {Enterprise Modelling and Information Systems Architectures - An International Journal},
volume = {4},
number = {1},
year = {2009},
,
pages = { 39-48 } ,
doi = { 10.18417/emisa.4.1.4 }
}
Dateien | Groesse | Format | Anzeige | |
---|---|---|---|---|
57-105-1-SM.pdf | 152.6Kb | View/ |
Sollte hier kein Volltext (PDF) verlinkt sein, dann kann es sein, dass dieser aus verschiedenen Gruenden (z.B. Lizenzen oder Copyright) nur in einer anderen Digital Library verfuegbar ist. Versuchen Sie in diesem Fall einen Zugriff ueber die verlinkte DOI: 10.18417/emisa.4.1.4
Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback
More Info
DOI: 10.18417/emisa.4.1.4
ISSN: 1866-3621
xmlui.MetaDataDisplay.field.date: 2009
Language:
(en)

Content Type: Text/Journal Article