A New SOA Security Framework Defending Web Services against WSDL Attacks

2011 ◽  
Author(s):  
Narges Shahgholi ◽  
Mehran Mohsenzadeh ◽  
Mir Ali Seyyedi ◽  
Saleh Hafez Qorani
Keyword(s):  
Web Services ◽  
Security Framework ◽  
Soa Security

CONSTRUCTION OF CUSTOMIZABLE SOA SECURITY FRAMEWORK USING ARTIFICIAL NEURAL NETWORKS

2016 ◽  
Vol 78 (12-3) ◽  
Author(s):  
Mohamed Ibrahim B ◽  
Mohd Fadzil Hassan
Keyword(s):  
Neural Networks ◽  
Artificial Neural Networks ◽  
Web Services ◽  
Data Exchange ◽  
Service Oriented Architecture ◽  
Enterprise Application Integration ◽  
Security Framework ◽  
Loosely Coupled ◽  
Artificial Neural ◽  
Soa Security

The Web Services technology for the implementation of Service Oriented Architecture (SOA) is the preferred choice in the current era of Enterprise Application Integration (EAI). As Web Services architecture is dynamic and loosely coupled, security aspects must be considered thoroughly at the time of designing. It is prone for attacks as it uses XML format for data exchange, which is a plain text. A novel security component named “Intelligent Security Engine (ISE)” is introduced into the proposed framework which incorporates Artificial Neural Networks (ANN) Learning Techniques for supervised knowledge acquisition on security threats of SOA. Thus, the proposed security framework is capable in the identification of future security vulnerabilities of SOA and can work effectively even for in-secured cross organizational EAI environment. 

Security in Service Oriented Architectures

2010 ◽  
pp. 187-211
Author(s):  
Anne V.D.M. Kayem
Keyword(s):  
Web Services ◽  
Information Exchange ◽  
Mitigation Strategies ◽  
Security Architecture ◽  
Security Model ◽  
Service Oriented Architectures ◽  
Security Standard ◽  
Service Oriented ◽  
Soa Security ◽  
Security Standards

Service Oriented Architectures (SOAs) have become the defacto standard for defining interoperable architectures on the web with the most common implementation of this concept being in the form of web services. Information exchange is an integral part of SOAs, so designing effective security architectures that ensure data confidentiality and integrity is important. However, selecting a security standard for the architecture is challenging because existing solutions are geared toward access control in relatively static scenarios rather than dynamic scenarios where some form of adaptability is needed. Moreover, when services interact across different domains interoperability becomes a problem because of the lack a consistent security model to handle service interactions. This chapter presents a comparative analysis of SOA security standards. The authors discuss the challenges SOA security architecture designers face, in relation to an example travel agent web services scenario, and outline potential mitigation strategies.

Security in Service Oriented Architectures

2013 ◽  
pp. 50-73
Author(s):  
Anne V.D.M. Kayem
Keyword(s):  
Web Services ◽  
Information Exchange ◽  
Mitigation Strategies ◽  
Security Architecture ◽  
Security Model ◽  
Service Oriented Architectures ◽  
Security Standard ◽  
Service Oriented ◽  
Soa Security ◽  
Security Standards

Service Oriented Architectures (SOAs) have become the defacto standard for defining interoperable architectures on the web with the most common implementation of this concept being in the form of web services. Information exchange is an integral part of SOAs, so designing effective security architectures that ensure data confidentiality and integrity is important. However, selecting a security standard for the architecture is challenging because existing solutions are geared toward access control in relatively static scenarios rather than dynamic scenarios where some form of adaptability is needed. Moreover, when services interact across different domains interoperability becomes a problem because of the lack a consistent security model to handle service interactions. This chapter presents a comparative analysis of SOA security standards. The authors discuss the challenges SOA security architecture designers face, in relation to an example travel agent web services scenario, and outline potential mitigation strategies.

Security in Service-Oriented Architecture

2005 ◽  
pp. 292-316 ◽  
Author(s):  
Srinivas Padmanabhuni ◽  
Hemant Adarkar
Keyword(s):  
Web Services ◽  
Service Oriented Architecture ◽  
Security Requirements ◽  
Online Systems ◽  
Pragmatic Analysis ◽  
Service Oriented ◽  
Web Services Security ◽  
Soa Security ◽  
Security Standards

This chapter covers the different facets of security as applicable to Service-Oriented Architecture (SOA) implementations. First, it examines the security requirements in SOA implementations, highlighting the differences as compared to the requirements of generic online systems. Later, it discusses the different solution mechanisms to address these requirements in SOA implementations. In the context of Web services, the predominant SOA implementation standards have a crucial role to play. This chapter critically examines the crucial Web services security standards in different stages of adoption and standardization. Later, this chapter examines the present-day common nonstandard security mechanisms of SOA implementations. Towards the end, it discusses the future trends in security for SOA implementations with special bearing on the role of standards. The authors believe that the pragmatic analysis of the multiple facets of security in SOA implementations provided here will serve as a guide for SOA security practitioners.

Security in Service-Oriented Architecture

2008 ◽  
pp. 1-21
Author(s):  
Srinivas Padmanabhuni ◽  
Hemant Adarkar
Keyword(s):  
Web Services ◽  
Service Oriented Architecture ◽  
Future Trends ◽  
Online Systems ◽  
Pragmatic Analysis ◽  
Service Oriented ◽  
Web Services Security ◽  
Soa Security ◽  
Security Standards

This chapter covers the different facets of security as applicable to Service-Oriented Architecture (SOA) implementations. First, it examines the security equirements in SOA implementations, highlighting the differences as compared to the requirements of generic online systems. Later, it discusses the different solution mechanisms to address these requirements in SOA implementations. In the context of Web services, the predominant SOA implementation standards have a crucial role to play. This chapter critically examines the crucial Web services security standards in different stages of adoption and standardization. Later, this chapter examines the present-day common nonstandard security mechanisms of SOA implementations. Towards the end, it discusses the future trends in security for SOA implementations with special bearing on the role of standards. The authors believe that the pragmatic analysis of the multiple facets of security in SOA implementations provided here will serve as a guide for SOA security practitioners.

A Policy-based Adaptive Web Services Security Framework

2011 ◽  
Vol 6 (12) ◽  
Author(s):  
Bin Li ◽  
Lingjun Zhao ◽  
Junwu Zhu ◽  
Jun Wu
Keyword(s):  
Web Services ◽  
Security Framework ◽  
Web Services Security
Sign in / Sign up

Export Citation Format

Share Document