An effective access control approach to support web service security

Autor: Sayed Gholam Hassan Tabatabei, Suhaimi Ibrahim, Mahdi Sharifi, Homa Movahednejad
Rok vydání: 2009
Předmět:
Zdroj: iiWAS
DOI: 10.1145/1806338.1806438
Popis: Nowadays, different devices and applications require interconnecting and communicating in convenient manner on the Internet. This can be achieved by Web service technology. Regarding the open and unreliable Internet where Web services applications run over it, security for Web services is a necessity and should be applied to keep service providers and requestors in a secure side. Furthermore, access control systems are built to provide protection with the intention to protect resources and information from unlawful access. However, the design of effective access control schemas is a key challenge in Web service security. In this paper, we propose an access control framework to support Web service security through strong authentication and authorization. In that case, SAML and context-aware role-based access control are employed in our framework design. Based on the result of our comparative evaluation of the proposed approach with other existing ones, the approach provides an effective solution to support security in Web services interoperability.
Databáze: OpenAIRE