Electrical and Computer Engineering Publications

Developing Proactive Security Dimensions for SOA

Document Type

Book Chapter

Publication Date


First Page


URL with Digital Object Identifier


Last Page



Security is one of the largest challenges facing the development of a Service-Oriented Architecture (SOA). This is due to the fact that SOA security is the responsibility of both the service consumer and service provider. In recent years, many solutions have been implemented, such as the Web Services Security Standards, including WS-Security and WS-SecurityPolicy. However, those standards are insufficient for the promising new generations of Web 2.0 applications. In this research, we describe an Intelligent SOA Security (ISOAS) framework and introduce four of its services: Authentication and Security Service (NSS), the Authorization Service (AS), the Privacy Service (PS) and the Service of Quality of Security Service (SQoSS). Furthermore, a case study is presented to examine the behavior of the described security services inside a market SOA environment.


This submission was Chapter 13 in the textbook "Digital Identity and Access Management: Technologies and Frameworks" published by IGI Global. Editors Raj Sharman, Sanjukta Das Smith, and Manish Gupta.