scholarly journals Survey on Signatured Xml Encryption for Multi-Tier Web Services Security

2016 ◽  
Vol 9 (16) ◽  
Author(s):  
R. Menaka ◽  
R. S. D. Wahida Banu ◽  
B. Ashadevi
Keyword(s):  
Web Services ◽  
Xml Encryption ◽  
Web Services Security

Web Services Security

2008 ◽  
pp. 334-408
Author(s):  
Manuel Mogollon
Keyword(s):  
Web Services ◽  
Key Management ◽  
Markup Language ◽  
Access Protocol ◽  
Xml Encryption ◽  
Extensible Markup ◽  
Xml Signature ◽  
Web Services Security ◽  
Open Standards ◽  
Security Assertion Markup Language

A service is an application offered by an organization that can be accessed through a programmable interface. Web services allow computers running on different operating platforms to access and share each other’s databases by using open standards, such as extensible markup language (XML) and simple object access protocol (SOAP). In this chapter, the following Web services mechanisms are discussed: (1) XML encryption, XML signature, and XML key management specification (XKMS); (2) security assertion markup language (SAML); and (3) Web services security (WS-security).

Web Services Security Based on XML Signature and XML Encryption

2010 ◽  
Vol 5 (9) ◽  
Author(s):  
Yue-sheng Gu ◽  
Meng-tao Ye ◽  
Yong Gan
Keyword(s):  
Web Services ◽  
Xml Encryption ◽  
Xml Signature ◽  
Web Services Security

Survey on the Web Services Security Specifications

2013 ◽  
Vol 655-657 ◽  
pp. 1809-1814
Author(s):  
Xiao Fen Zhang ◽  
Yi Hou ◽  
Jia Lin Ma
Keyword(s):  
Web Services ◽  
Transport Layer ◽  
Secure Socket Layer ◽  
Transport Layer Security ◽  
Xml Encryption ◽  
Xml Signature ◽  
Web Services Security ◽  
The Web

Web Services security specifications include SSL/TLS (Secure Socket Layer/Transport Layer Security), XML Encryption, XML Signature, WS-Security specification family, PKI-related specifications etc. SSL/TLS are implemented in non-XML frameworks at the transport level, and others are implemented in XML frameworks at the application level. These specifications can satisfy the different requirements of Web Services security (confidentiality, integrity, authenticity, authorization, authentication and nonrepudiation). XML-based specifications are propitious to the integration and interoperability of Web Services security. SSL/TLS is sufficient for the basic generic security of internal Web Services projects. WS-Security is probably overkill, especially with the heavy XML processing that is involved in WS-Security.

WS-Security on PRODML

2014 ◽  
Vol 1 (1) ◽  
pp. 9-34
Author(s):  
Bobby Suryajaya
Keyword(s):  
Web Services ◽  
Digital Signature ◽  
Data Transfer ◽  
Web Services Security ◽  
Soap Message ◽  
Simulation Results ◽  
End To End

SKK Migas plans to apply end-to-end security based on Web Services Security (WS-Security) for Sistem Operasi Terpadu (SOT). However, there are no prototype or simulation results that can support the plan that has already been communicated to many parties. This paper proposes an experiment that performs PRODML data transfer using WS-Security by altering the WSDL to include encryption and digital signature. The experiment utilizes SoapUI, and successfully loaded PRODML WSDL that had been altered with WSP-Policy based on X.509 to transfer a SOAP message.

Web Services Security: Is the Problem Solved?

2004 ◽  
Vol 13 (3) ◽  
pp. 22-31 ◽  
Author(s):  
Carlos Gutiérrez ◽  
Eduardo Fernández-Medina ◽  
Mario Piattini
Keyword(s):  
Web Services ◽  
Web Services Security
Sign in / Sign up

Export Citation Format

Share Document