Developing Proactive Security Dimensions for SOA

Authors

Hany F. ELYamany, Suez Canal UniversityFollow
David S. Allison, Western UniversityFollow
Miriam AM Capretz, Western UniversityFollow

Document Type

Book Chapter

Publication Date

12-2011

First Page

254

URL with Digital Object Identifier

http://dx.doi.org/10.4018/978-1-61350-498-7.ch013

Last Page

276

Abstract

Security is one of the largest challenges facing the development of a Service-Oriented Architecture (SOA). This is due to the fact that SOA security is the responsibility of both the service consumer and service provider. In recent years, many solutions have been implemented, such as the Web Services Security Standards, including WS-Security and WS-SecurityPolicy. However, those standards are insufficient for the promising new generations of Web 2.0 applications. In this research, we describe an Intelligent SOA Security (ISOAS) framework and introduce four of its services: Authentication and Security Service (NSS), the Authorization Service (AS), the Privacy Service (PS) and the Service of Quality of Security Service (SQoSS). Furthermore, a case study is presented to examine the behavior of the described security services inside a market SOA environment.

Notes

This submission was Chapter 13 in the textbook "Digital Identity and Access Management: Technologies and Frameworks" published by IGI Global. Editors Raj Sharman, Sanjukta Das Smith, and Manish Gupta.

http://www.igi-global.com/book/digital-identity-access-management/55281