An extended XACML model to ensure secure information access for web services

被引:5
作者
Chou, Shih-Chien [1 ]
Huang, Chun-Hao [1 ]
机构
[1] Natl Dong Hwa Univ, Dept Comp Sci & Informat Math, Hsinchu, Taiwan
来源
JOURNAL OF SYSTEMS AND SOFTWARE | 2010年 / 83卷 / 01期
关键词
Web service; Information flow control; Security; Prevent information leakage; OBJECT-ORIENTED SYSTEMS; FLOW CONTROL;
D O I
10.1016/j.jss.2009.06.045
中图分类号
TP31 [计算机软件];
学科分类号
081202 ; 0835 ;
摘要
More and more software systems based on web services have been developed. Web service development techniques are thus becoming crucial. To ensure secure information access, access control should be taken into consideration when developing web services. This paper proposes an extended XACML model named EXACML to ensure secure information access for web services. It is based on the technique of information flow control. Primary features offered by the model are: (1) both the information of requesters and that of web services are protected, (2) the access control of web services is more precise than just "allow or reject" policy in existing models, and (3) the model will deny non-secure information access during the execution of a web service even when a requester is allowed to invoke the web service. (C) 2009 Elsevier Inc. All rights reserved.
引用
收藏
页码:77 / 84
页数:8
相关论文
共 50 条
  • [41] eInvoke: Secure e-Invoicing based on web services
    Kaliontzoglou A.
    Boutsi P.
    Polemi D.
    Electronic Commerce Research, 2006, 6 (3-4) : 337 - 353
  • [42] Anonymity in Secure Access to Integrated Touristic Services Including Payment
    Magdalena Payeras-Capella, M.
    Mut-Puigserver, Macia
    Huguet-Rotger, Llorenc
    11TH INTERNATIONAL CONFERENCE ON SECURITY OF INFORMATION AND NETWORKS (SIN 2018), 2018,
  • [43] Capability enhanced trust evaluation model for Web services
    Key Laboratory of Data Engineering and Knowledge Engineering, Renmin University of China, Beijing 100872, China
    不详
    不详
    Jisuanji Xuebao, 2008, 8 (1471-1477): : 1471 - 1477
  • [44] Proposal and Development of the Web Services Input Validation Model
    Brinhosa, Rafael Bosse
    Westphall, Carla Merkle
    Westphall, Carlos Becker
    2012 IEEE NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM (NOMS), 2012, : 643 - 646
  • [45] A new method for consistency of access control in web services
    Bagheri, Esmaeil
    Babaei, Saeid
    Khayyambashi, Mohammad Reza
    2009 2ND IEEE INTERNATIONAL CONFERENCE ON COMPUTER SCIENCE AND INFORMATION TECHNOLOGY, VOL 4, 2009, : 567 - +
  • [46] Ranking Web Services with Limited and Noisy Information
    Huang, Jiwei
    Chen, Ying
    Lin, Chuang
    Chen, Junliang
    2014 IEEE 21ST INTERNATIONAL CONFERENCE ON WEB SERVICES (ICWS 2014), 2014, : 638 - 645
  • [47] Using a Correlation Equation to ensure Stability between Personalization and Security in Composing Web Services
    Abidi, Sarra
    Toumi, Samir
    Essafi, Mehrez
    Guegan, Chirine Ghedira
    Ben Ghezala, Henda Hajjami
    2023 20TH ACS/IEEE INTERNATIONAL CONFERENCE ON COMPUTER SYSTEMS AND APPLICATIONS, AICCSA, 2023,
  • [48] A Context-Aware Web Information System Based on Web Services
    Soukkarieh, B.
    Sedes, F.
    PROCEEDINGS OF THE SECOND INTERNATIONAL CONFERENCE ON RESEARCH CHALLENGES IN INFORMATION SCIENCE: RCIS 2008, 2007, : 29 - 34
  • [49] WSEmailAn architecture and system for secure Internet messaging based on web services
    Michael J. May
    Kevin D. Lux
    Carl A. Gunter
    Service Oriented Computing and Applications, 2020, 14 : 5 - 17
  • [50] SBA-XACML: Set-based approach providing efficient policy decision process for accessing Web services
    Mourad, Azzam
    Jebbaoui, Hussein
    EXPERT SYSTEMS WITH APPLICATIONS, 2015, 42 (01) : 165 - 178
12345