3PAC: Enforcing access policies for web services

被引:0
作者
van Bemmel, J [1 ]
Wegdam, M [1 ]
Lagerberg, K [1 ]
机构
[1] Bell Labs Adv Technol EMEA Twente, Lucent Technol, NL-7521 PL Enschede, Netherlands
来源
2005 IEEE International Conference on Web Services, Vols 1 and 2, Proceedings | 2005年
关键词
Web Services security; policy enforcement; distributed access control;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Web Services fail to deliver on the promise of ubiquitous deployment and seamless interoperability due to the lack of a uniform, standards-based approach to all aspects of security. In particular, the enforcement of access policies in a Service Oriented Architecture is not addressed adequately. We present a novel approach to the distribution and enforcement of credentials-based access policies for Web Services (3PAC) which scales well and can be implemented in existing deployments.
引用
收藏
页码:589 / 596
页数:8
相关论文
共 16 条
  • [1] AGRAWAL R, 2001, WWW10
  • [2] [Anonymous], 2006, IEEE COMPUTER
  • [3] BHATTI R, P ICW04, P184
  • [4] BISKUP J, P SACMAT 04, P31
  • [5] GOG L, 1989, P IEEE S SEC PRIV, P56
  • [6] Service-oriented computing: Key concepts and principles
    Huhns, MN
    Singh, MP
    [J]. IEEE INTERNET COMPUTING, 2005, 9 (01) : 75 - 81
  • [7] Levy Henry M., 1984, Capability-Based Computer Systems
  • [8] *LIB ID WSF, DISC PROT V1 1
  • [9] Neuman B. C., 1993, Proceedings the 13th International Conference on Distributed Computing Systems (Cat. No.93CH3282-1), P283, DOI 10.1109/ICDCS.1993.287698
  • [10] KERBEROS - AN AUTHENTICATION SERVICE FOR COMPUTER-NETWORKS
    NEUMAN, BC
    TSO, T
    [J]. IEEE COMMUNICATIONS MAGAZINE, 1994, 32 (09) : 33 - 38
12