An XML-based approach to combine firewalls and Web services security specifications

Marco Cremonini, Ernesto Damiani, Sabrina De Capitani Di Vimercati, Pierangela Samarati

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

12 Scopus citations

Abstract

The Web Services Architecture (WSA) defines a comprehensive model for service-oriented interactions among end-points over a private network or the Internet. Since the many opportunities for better interacting services and the provision of richer functionality, crossing the boundary of organizations many standard proposals addressing different aspects of such interaction model are appearing. In this paper, we analyze the security requirements of the WSA and observe that the security model currently developed is not sufficient. In particular, we claim that many aspects related to network security and the integration of firewalls into the WSA have been underestimated. We show with different examples the usefulness of a semantics-aware firewall operating both at SOAP level and at lower network-based layers. We analyze, under this perspective, the impact on security that recently proposed stateful SOAP-based protocols could have, and describe how asynchronous protocols could pose high security risks on both service providers and service requesters. This drives us to the conclusion that, if security is an enabling factor for the success of Web service technologies, then perimetral security and firewall technology should be both fully supported into the WSA and improved to satisfy the requirements of the service-oriented interaction.

Original languageBritish English
Title of host publicationProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security)
PublisherAssociation for Computing Machinery (ACM)
Pages69-78
Number of pages10
ISBN (Print)158113777X, 9781581137774
DOIs
StatePublished - 2003
EventProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security) - Fairfax, VA, United States
Duration: 31 Oct 200331 Oct 2003

Publication series

NameProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security)

Conference

ConferenceProceedings of the ACM Workshop on XML Security 2003 (In Association with 10th ACM Conference on Computer and Communications Security)
Country/TerritoryUnited States
CityFairfax, VA
Period31/10/0331/10/03

Keywords

  • Firewall
  • Network security
  • Service security
  • SOAP
  • Web services

Fingerprint

Dive into the research topics of 'An XML-based approach to combine firewalls and Web services security specifications'. Together they form a unique fingerprint.

Cite this