Security of Web Services Based Service-Oriented Architectures (CROSBI ID 561636)
Prilog sa skupa u zborniku | izvorni znanstveni rad | međunarodna recenzija
Podaci o odgovornosti
Gerić Sandro
engleski
Security of Web Services Based Service-Oriented Architectures
Service-oriented architectures (SOA) as a new form of information system (IS) architectures is more and more important in todays IS development. Some researchers are pointing out that the number of SOA implementations in the next few years will significantly outnumber the number of traditional IS architectures implementations. One of the reasons for this are the possibilities that SOA and technologies used for SOA development are offering. Today’s SOA are mostly based and developed using Web services technology. Because of that SOA inherits multiple advantages and disadvantages of Web services technology as well. This is especially important in the context of SOA security issues that somehow differ from "traditional" information system security principles. On the implementation level SOA security issues are mostly based on Web services security solutions, like Trusted communication principles via SOAP, WS-Security, WS- SecureConversation ; Trusted service via WS- Policy, WS- PolicyAssertions, WS-PolicyAttachment, WS- SecurityPolicy ; WS-Authorization, WS-Privacy, and Trusted Web via WS-Trust, WS-Federation. This article addresses the question of security mechanisms that are usually used and that can be used in Web services based SOA implementation from standardized as well as technical and implementation point of view. An overview of SOA security solutions is given, their positive and negative sides as well as compatibility problems in service-oriented architectures that are developed of components based on Web services technology and legacy software components.
WSS; web services; security
nije evidentirano
nije evidentirano
nije evidentirano
nije evidentirano
nije evidentirano
nije evidentirano
Podaci o prilogu
208-213.
2010.
objavljeno
Podaci o matičnoj publikaciji
MIPRO 33rd International Convention, Proceedings of Information System Security
Biljanović, Petar
Zagreb:
978-953-233-055-7
Podaci o skupu
MIPRO 2010
predavanje
24.05.2010-28.05.2010
Opatija, Hrvatska