Design and Implementation of a Java-Based Single Sign-On Library Supporting SAML (Security Assertion Markup Language) for Grid and Web Services Security

A service is an application offered by an organization that can be accessed through a programmable interface. Web services allow computers running on different operating platforms to access and share each other’s databases by using open standards, such as extensible markup language (XML) and simple object access protocol (SOAP). In this chapter, the following Web services mechanisms are discussed: (1) XML encryption, XML signature, and XML key management specification (XKMS); (2) security assertion markup language (SAML); and (3) Web services security (WS-security).

Download Full-text

Java-Based Single Sign-On Library Supporting SAML (Security Assertion Markup Language) for Distributed Web Services

Advanced Web Technologies and Applications - Lecture Notes in Computer Science ◽

10.1007/978-3-540-24655-8_99 ◽

2004 ◽

pp. 891-894 ◽

Cited By ~ 4

Author(s):

Jongil Jeong ◽

Dongkyoo Shin ◽

Dongil Shin ◽

Kiyoung Moon

Keyword(s):

Web Services ◽

Markup Language ◽

Single Sign On ◽

Security Assertion Markup Language

Download Full-text

Extending the security assertion markup language to support delegation for Web services and grid services

IEEE International Conference on Web Services (ICWS'05) ◽

10.1109/icws.2005.59 ◽

2005 ◽

Cited By ~ 10

Author(s):

Jun Wang ◽

D. Del Vecchio ◽

M. Humphrey

Keyword(s):

Web Services ◽

Markup Language ◽

Grid Services ◽

Security Assertion Markup Language

Download Full-text

Design and implementation of Web services security based on message layer

Wuhan University Journal of Natural Sciences ◽

10.1007/bf02831676 ◽

2004 ◽

Vol 9 (5) ◽

pp. 755-759

Author(s):

Wang Cui-ru ◽

Xu Zheng-wei ◽

Yuan He-jin ◽

Ma Hui-min

Keyword(s):

Web Services ◽

Design And Implementation ◽

Web Services Security

Download Full-text

Dynamic Security Assertion Markup Language: Simplifying Single Sign-On

IEEE Security & Privacy ◽

10.1109/msp.2008.31 ◽

2008 ◽

Vol 6 (2) ◽

pp. 83-85 ◽

Cited By ~ 14

Author(s):

P. Harding ◽

L. Johansson ◽

N. Klingenstein

Keyword(s):

Markup Language ◽

Single Sign On ◽

Dynamic Security ◽

Security Assertion Markup Language

Download Full-text

Security for Web Services

Innovations, Standards and Practices of Web Services ◽

10.4018/978-1-61350-104-7.ch015 ◽

2013 ◽

pp. 336-362

Author(s):

Lorenzo Martino ◽

Elisa Bertino

Keyword(s):

Web Services ◽

Access Control ◽

Identity Management ◽

Security Requirements ◽

Research Issues ◽

Single Sign On ◽

Web Service Security ◽

Web Services Security ◽

Management Techniques ◽

Management Functions

This article discusses the main security requirements for Web services and it describes how such security requirements are addressed by standards for Web services security recently developed or under development by various standardizations bodies. Standards are reviewed according to a conceptual framework that groups them by the main functionalities they provide. Covered standards include most of the standards encompassed by the original Web Service Security roadmap proposed by Microsoft and IBM in 2002 (Microsoft and IBM 2002). They range from the ones geared toward message and conversation security and reliability to those developed for providing interoperable Single Sign On and Identity Management functions in federated organizations. The latter include Security Assertion Markup Language (SAML), WS-Policy, XACML, that is related to access control and has been recently extended with a profile for Web services access control; XKMS and WS-Trust; WS-Federation, LibertyAlliance and Shibboleth, that address the important problem of identity management in federated organizations. The article also discusses the issues related to the use of the standards and open research issues in the area of access control for Web services and innovative digital identity management techniques are outlined.

Download Full-text

Security for Web Services

International Journal of Web Services Research ◽

10.4018/jwsr.2009071303 ◽

2009 ◽

Vol 6 (4) ◽

pp. 48-74 ◽

Cited By ~ 13

Author(s):

Lorenzo D. Martino ◽

Elisa Bertino

Keyword(s):

Web Services ◽

Access Control ◽

Identity Management ◽

Security Requirements ◽

Research Issues ◽

Single Sign On ◽

Web Service Security ◽

Web Services Security ◽

Management Techniques ◽

Management Functions

This article discusses the main security requirements for Web services and it describes how such security requirements are addressed by standards for Web services security recently developed or under development by various standardizations bodies. Standards are reviewed according to a conceptual framework that groups them by the main functionalities they provide. Covered standards include most of the standards encompassed by the original Web Service Security roadmap proposed by Microsoft and IBM in 2002 (Microsoft and IBM 2002). They range from the ones geared toward message and conversation security and reliability to those developed for providing interoperable Single Sign On and Identity Management functions in federated organizations. The latter include Security Assertion Markup Language (SAML), WS-Policy, XACML, that is related to access control and has been recently extended with a profile for Web services access control; XKMS and WS-Trust; WS-Federation, Liberty Alliance and Shibboleth, that address the important problem of identity management in federated organizations. The article also discusses the issues related to the use of the standards and open research issues in the area of access control for Web services and innovative digital identity management techniques are outlined.

Download Full-text

Automatic Security Analysis of SAML-Based Single Sign-On Protocols

Digital Identity and Access Management ◽

10.4018/978-1-61350-498-7.ch010 ◽

2011 ◽

pp. 168-187 ◽

Cited By ~ 1

Author(s):

Alessandro Armando ◽

Roberto Carbone ◽

Luca Compagna ◽

Giancarlo Pellegrino

Keyword(s):

Life Cycle ◽

Model Checking ◽

Security Analysis ◽

Security Protocols ◽

Markup Language ◽

Access To Services ◽

Web Browser ◽

Single Sign On ◽

Development Life Cycle ◽

Security Assertion Markup Language

Single-Sign-On (SSO) protocols enable companies to establish a federated environment in which clients sign in the system once and yet are able to access to services offered by different companies. The OASIS Security Assertion Markup Language (SAML) 2.0 Web Browser SSO Profile is the emerging standard in this context. In previous work a severe security flaw in the SAML-based SSO for Google Apps was discovered. By leveraging this experience, this chapter will show that model checking techniques for security protocols can support the development and analysis of SSO solutions helping the designer not only to detect serious security flaws early in the development life-cycle but also to provide assurance on the security of the solutions identified.

Download Full-text

WS-Security on PRODML

ACMIT Proceedings ◽

10.33555/acmit.v1i1.16 ◽

2014 ◽

Vol 1 (1) ◽

pp. 9-34

Author(s):

Bobby Suryajaya

Keyword(s):

Web Services ◽

Digital Signature ◽

Data Transfer ◽

Web Services Security ◽

Soap Message ◽

Simulation Results ◽

End To End

SKK Migas plans to apply end-to-end security based on Web Services Security (WS-Security) for Sistem Operasi Terpadu (SOT). However, there are no prototype or simulation results that can support the plan that has already been communicated to many parties. This paper proposes an experiment that performs PRODML data transfer using WS-Security by altering the WSDL to include encryption and digital signature. The experiment utilizes SoapUI, and successfully loaded PRODML WSDL that had been altered with WSP-Policy based on X.509 to transfer a SOAP message.

Download Full-text