TY - JOUR
T1 - A Web service architecture for enforcing access control policies
AU - Ardagna, Claudio Agostino
AU - Damiani, Ernesto
AU - De Capitani Di Vimercati, Sabrina
AU - Samarati, Pierangela
N1 - Funding Information:
This work was supported in part by the European Union within the PRIME Project in the FP6/IST Programme under contract IST-2002-507591 and by the Italian MIUR within the KIWI and MAPS projects.
PY - 2006/1/3
Y1 - 2006/1/3
N2 - Web services represent a challenge and an opportunity for organizations wishing to expose product and services offerings through the Internet. The Web service technology provides an environment in which service providers and consumers can discover each other and conduct business transactions through the exchange of XML-based documents. However, any organization using XML and Web Services must ensure that only the right users, sending the appropriate XML content, can access their Web Services. Access control policy specification for controlling access to Web services is then becoming an emergent research area due to the rapid development of Web services in modern economy. This paper is an effort to understand the basic concepts for securing Web services and the requirements for implementing secure Web services. We describe the design and implementation of a Web service architecture for enforcing access control policies, the overall rationale and some specific choices of our design are discussed.
AB - Web services represent a challenge and an opportunity for organizations wishing to expose product and services offerings through the Internet. The Web service technology provides an environment in which service providers and consumers can discover each other and conduct business transactions through the exchange of XML-based documents. However, any organization using XML and Web Services must ensure that only the right users, sending the appropriate XML content, can access their Web Services. Access control policy specification for controlling access to Web services is then becoming an emergent research area due to the rapid development of Web services in modern economy. This paper is an effort to understand the basic concepts for securing Web services and the requirements for implementing secure Web services. We describe the design and implementation of a Web service architecture for enforcing access control policies, the overall rationale and some specific choices of our design are discussed.
KW - Distributed systems
KW - Interoperability
KW - Security
KW - Web Services
KW - XML
UR - http://www.scopus.com/inward/record.url?scp=29244432152&partnerID=8YFLogxK
U2 - 10.1016/j.entcs.2004.09.044
DO - 10.1016/j.entcs.2004.09.044
M3 - Article
AN - SCOPUS:29244432152
SN - 1571-0661
VL - 142
SP - 47
EP - 62
JO - Electronic Notes in Theoretical Computer Science
JF - Electronic Notes in Theoretical Computer Science
IS - SPEC. ISS.
ER -