Fine grained access control for SOAP E-services

Ernesto Damiani, Sabrina De Capitani Di Vimercati, Stefano Paraboschi, Pierangela Samarati

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

62 Scopus citations

Abstract

Lightweight protocols for remote service invocation via HTTP and XML, such as SOAP, are rapidly gaining accept- A nce among developers of Internet-based e-services, espe-cially because of their firewall-traversal capabilities. How-ever, no standard technique for access control security is currently defined for either HTTP or SOAP itself. Con-cerns have been raised about the possibility that different SOAP applications will deal with embedded security in dif-ferent ways, leading to application-dependent security holes. In this paper, we propose an approach that relies on the XML structure of SOAP requests to support fine-grained authorizations at the level of individual XML elements and attributes that compose a SOAP call. The result is a sim-ple, yet powerful and general, technique to enforce access restrictions to SOAP invocations.

Original languageBritish English
Title of host publicationProceedings of the 10th International Conference on World Wide Web, WWW 2001
Pages504-513
Number of pages10
DOIs
StatePublished - 1 Apr 2001
Event10th International Conference on World Wide Web, WWW 2001 - Hong Kong, Hong Kong
Duration: 1 May 20015 May 2001

Publication series

NameProceedings of the 10th International Conference on World Wide Web, WWW 2001

Conference

Conference10th International Conference on World Wide Web, WWW 2001
Country/TerritoryHong Kong
CityHong Kong
Period1/05/015/05/01

Keywords

  • Access control
  • Certificates
  • Roles
  • SOAP
  • XML

Fingerprint

Dive into the research topics of 'Fine grained access control for SOAP E-services'. Together they form a unique fingerprint.

Cite this