Security Standards and Issues for Grid Computing

Security in grid environments that are built using Service Oriented Architecture (SOA) technologies is a great challenge. On one hand, the great diversity in security technologies, mechanisms and protocols that each organization follows and on the other hand, the different goals and policies that these organizations adopt, comprise a complex security environment. Authenticating and authorizing users and services, identity management in a multi-organizational scenario and secure communication define the main context of the problem. In this chapter, we provide an overview of the security protocols and technologies that can be applied on a Web Service (WS) based grid environment.

Download Full-text

Challenges in Securing ESB Against Web Service Attacks

Advances in Business Information Systems and Analytics - Exploring Enterprise Service Bus in the Service-Oriented Architecture Paradigm ◽

10.4018/978-1-5225-2157-0.ch006 ◽

2017 ◽

pp. 74-96 ◽

Cited By ~ 1

Author(s):

Rizwan Ur Rahman ◽

Divya Rishi Sahu ◽

Deepak Singh Tomar

Keyword(s):

Distributed Computing ◽

Web Services ◽

Web Service ◽

Service Oriented Architecture ◽

Service Research ◽

Internet Protocols ◽

Is Implementation ◽

Security Issues ◽

Service Oriented ◽

Security Standards

Web services and Service oriented architecture are innovative phase of distributed computing, build on top of the distributed computing models. Web services are being used mostly for the integration business components. One of the key concerns in web services and service oriented architecture is implementation of adequate security. Security issues in SOA are still probing and in spite of an increase in web service research and development, many security challenges remain unanswered. This chapter introduces the vulnerabilities, threats associated with web services and addresses WS-Security standards and countermeasures. Web service protocol is designed to provide connectivity. Not any of these standards of web services contain any inbuilt security aspect of their own. Web Services are exposed to attack from common Internet protocols and in addition to new categories of attacks targeting Web Services in particular. Consequently, the aim of this chapter is to provide review of security mechanism in web services.

Download Full-text

Web Service Candidate Identification Using the Firefly Algorithm

International Journal of Web Services Research ◽

10.4018/ijwsr.2018100103 ◽

2018 ◽

Vol 15 (4) ◽

pp. 45-60

Author(s):

Negar Abbasi ◽

Ali Moeini ◽

Taghi Javdani Gandomani

Keyword(s):

Web Service ◽

Firefly Algorithm ◽

Service Oriented Architecture ◽

High Reliability ◽

Legacy Software ◽

Service Identification ◽

Service Oriented ◽

Automatic Methods ◽

Reservation System ◽

Candidate Identification

Identification of web service candidates in legacy software is a crucial process in the reengineering of legacy systems to service oriented architecture. Researchers have proposed various automatic and semi-automatic methods for this purpose, some of which have proved to be quite efficient, but there are still certain gaps which need to be addressed. This article discovers the strengths and weaknesses of previous methods and develops a method with improved service candidate identification performance. In this article, service identification is considered as a search and optimization problem and a firefly algorithm is developed accordingly to give high-quality solutions in reasonably short times. A filtering method is also developed to remove excess modules (false positives) from the algorithm outputs. A case study on a legacy flight reservation system demonstrates the high reliability of the outputs given by the proposed method.

Download Full-text

PROCESS MODEL ONTOLOGY-BASED MATCHMAKING OF SEMANTIC WEB SERVICES

International Journal of Cooperative Information Systems ◽

10.1142/s0218843011002262 ◽

2011 ◽

Vol 20 (04) ◽

pp. 357-370 ◽

Cited By ~ 4

Author(s):

D. PAULRAJ ◽

S. SWAMYNATHAN ◽

M. MADHAIYAN

Keyword(s):

Web Services ◽

Semantic Web ◽

Web Service ◽

Process Model ◽

Service Discovery ◽

Service Oriented Architecture ◽

Semantic Web Services ◽

Functional Part ◽

Service Oriented ◽

Concise Description

One of the key challenges of the Service Oriented Architecture is the discovery of relevant services for a given task. In Semantic Web Services, service discovery is generally achieved by using the service profile ontology of OWL-S. Profile of a service is a derived, concise description and not a functional part of the semantic web service. There is no schema present in the service profile to describe the input, output (IO), and the IOs in the service profile are not always annotated with ontology concepts, whereas the process model has such a schema to describe the IOs which are always annotated with ontology concepts. In this paper, we propose a complementary sophisticated matchmaking approach which uses the concrete process model ontology of OWL-S instead of the concise service profile ontology. Empirical analysis shows that high precision and recall can be achieved by using the process model-based service discovery.

Download Full-text

IMSC-EIoTD: Identity Management and Secure Communication for Edge IoT Devices

Sensors ◽

10.3390/s20226546 ◽

2020 ◽

Vol 20 (22) ◽

pp. 6546

Author(s):

Kazi Masum Sadique ◽

Rahim Rahmani ◽

Paul Johannesson

Keyword(s):

Secure Communication ◽

Identity Management ◽

Security Protocols ◽

Spin Model ◽

The Internet ◽

Human Society ◽

Proposed Model ◽

Authentication And Authorization ◽

Quality Of Living ◽

Iot Devices

The Internet of things (IoT) will accommodate several billions of devices to the Internet to enhance human society as well as to improve the quality of living. A huge number of sensors, actuators, gateways, servers, and related end-user applications will be connected to the Internet. All these entities require identities to communicate with each other. The communicating devices may have mobility and currently, the only main identity solution is IP based identity management which is not suitable for the authentication and authorization of the heterogeneous IoT devices. Sometimes devices and applications need to communicate in real-time to make decisions within very short times. Most of the recently proposed solutions for identity management are cloud-based. Those cloud-based identity management solutions are not feasible for heterogeneous IoT devices. In this paper, we have proposed an edge-fog based decentralized identity management and authentication solution for IoT devices (IoTD) and edge IoT gateways (EIoTG). We have also presented a secure communication protocol for communication between edge IoT devices and edge IoT gateways. The proposed security protocols are verified using Scyther formal verification tool, which is a popular tool for automated verification of security protocols. The proposed model is specified using the PROMELA language. SPIN model checker is used to confirm the specification of the proposed model. The results show different message flows without any error.

Download Full-text

Dynamic Web Service Composition within a Service-Oriented Architecture

IEEE International Conference on Web Services (ICWS 2007) ◽

10.1109/icws.2007.79 ◽

2007 ◽

Cited By ~ 26

Author(s):

Ivan J. Jureta ◽

Stephane Faulkner ◽

Youssef Achbany ◽

Marco Saerens

Keyword(s):

Web Service ◽

Service Composition ◽

Service Oriented Architecture ◽

Web Service Composition ◽

Dynamic Web ◽

Service Oriented

Download Full-text

Creating Value with Interactive Pricing Mechanisms — A Web Service-Oriented Architecture

Seventh IEEE International Conference on E-Commerce Technology (CEC'05) ◽

10.1109/icect.2005.32 ◽

2006 ◽

Cited By ~ 2

Author(s):

M. Bernhardt ◽

O. Hinz

Keyword(s):

Web Service ◽

Service Oriented Architecture ◽

Service Oriented ◽

Interactive Pricing

Download Full-text

A Service Oriented SLA Management Framework for Grid Environments

Theoretical and Analytical Service-Focused Systems Design and Development ◽

10.4018/978-1-4666-1767-4.ch003 ◽

2012 ◽

pp. 45-61

Author(s):

V. Pouli ◽

C. Marinos ◽

M. Grammatikou ◽

S. Papavassiliou ◽

V. Maglaris

Keyword(s):

Web Service ◽

Service Providers ◽

Service Level ◽

Service Availability ◽

Management Framework ◽

Qos Guarantees ◽

Grid Environments ◽

Monitoring Procedure ◽

Service Oriented ◽

And Performance

Traditionally, network Service Providers specify Service Level Agreements (SLAs) to guarantee service availability and performance to their customers. However, these SLAs are rather static and span a single provider domain. Thus, they are not applicable to a multi–domain environment. In this paper, the authors present a framework for automatic creation and management of SLAs in a multi-domain environment. The framework is based on Service Oriented Computing (SOC) and contains a collection of web service calls and modules that allow for the automatic creation, configuration, and delivery of an end-to-end SLA, created from the merging of the per-domain SLAs. This paper also presents a monitoring procedure to monitor the QoS guarantees stipulated in the SLA. The SLA establishment and monitoring procedures are tested through a Grid application scenario targeted to perform remote control and monitoring of instrument elements distributed across the Grid.

Download Full-text

Developing Proactive Security Dimensions for SOA

Digital Identity and Access Management ◽

10.4018/978-1-61350-498-7.ch013 ◽

2011 ◽

pp. 254-276

Author(s):

Hany F. EL Yamany ◽

David S. Allison ◽

Miriam A.M. Capretz

Keyword(s):

Service Oriented Architecture ◽

Security Services ◽

Security Service ◽

Service Oriented ◽

Service Consumer ◽

Web Services Security ◽

Soa Security ◽

Security Standards

Security is one of the largest challenges facing the development of a Service-Oriented Architecture (SOA). This is due to the fact that SOA security is the responsibility of both the service consumer and service provider. In recent years, many solutions have been implemented, such as the Web Services Security Standards, including WS-Security and WS-SecurityPolicy. However, those standards are insufficient for the promising new generations of Web 2.0 applications. In this research, we describe an Intelligent SOA Security (ISOAS) framework and introduce four of its services: Authentication and Security Service (NSS), the Authorization Service (AS), the Privacy Service (PS) and the Service of Quality of Security Service (SQoSS). Furthermore, a case study is presented to examine the behavior of the described security services inside a market SOA environment.

Download Full-text

Issues on the Compatibility of Web Service Contracts

Innovations, Standards and Practices of Web Services ◽

10.4018/978-1-61350-104-7.ch008 ◽

2013 ◽

pp. 154-188 ◽

Cited By ~ 3

Author(s):

Surya Nepal ◽

John Zic

Keyword(s):

Web Service ◽

Service Composition ◽

Large Scale ◽

Service Oriented Architecture ◽

Distributed Applications ◽

Compatibility Conditions ◽

Service Contract ◽

Service Contracts ◽

Service Oriented ◽

Application Developers

In the Service Oriented Architecture (SOA) model, a service is characterized by its exchange of asynchronous messages, and a service contract is a desirable composition of a variety of messages. Though this model is simple, implementing large-scale, cross-organizational distributed applications may be difficult to achieve in general, as there is no guarantee that service composition will be possible because of incompatibilities of Web service contracts. We categorize compatibility issues in Web service contracts into two broad categories: (a) between contracts of different services (which we define as a composability problem), and (b) a service contract and its implementation (which we define as a conformance problem). This chapter examines and addresses these problems, first by identifying and specifying contract compatibility conditions, and second, through the use of compatibility checking tools that enable application developers to perform checks at design time.

Download Full-text