An adaptive authentication and authorization model for service oriented enterprise computing

Service oriented enterprise computing is an integration architectural style aimed to expose and consume coarse grained and fine grained modularization of business functionalities as services that are being deployed in the loosely coupled organizational environment. The web service is the implementation technology of service oriented architecture (SOA) where it is built on the existing networking and web interfacing standards as it has to use the web as a medium of communication and does not have any specialized in-built layer for security. The majority of the vendor security products in the market need specialized hardware/software components, eventually, they break the standards and principles of service oriented architecture. The traditional way of problem solving is not effective for developing security solutions for service oriented computing, as its boundaries keep expanding beyond a single organiza-tional environment due to the advent of communication and business technologies such as the Internet of Things (IoT), hyper-personalization, and edge computing. Hence, it is a mandatory entity in this digital age of enterprise computing to have a specialized authentication and authorization solution exclusively for addressing the existing security gaps in SOA in an adaptive way forward approach. In this paper, the security gaps in the existing Identity and Access Management (IDAM) solutions for service oriented enterprise computing are analyzed, and a novel intelligent security engine which is packed with extended authentication and authorization solution model for service consumption is presented. The authentication and authorization security requirements are considered as cross cutting concerns of SOA implementation and the solution is constructed as Aspect-Oriented Programming (AOP) advices, which enables the solution can be attached as a ‘plug & play’ component without changing the underlying source code of the service implementation. For Proof-of-Concept (PoC), the proposed authentication and authorization security model is tested in a large scale service oriented enterprise computing environment and the results have been analyzed statistically. It is evident from the results that the proposed security model addresses security issues comparatively better than existing security solutions.

Download Full-text

An Integrated Security Framework for SOA

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.427-429.2151 ◽

2013 ◽

Vol 427-429 ◽

pp. 2151-2154

Author(s):

Ling Xia Liu ◽

Dong Xia Wang ◽

Min Huan Huang ◽

Rui Zhang

Keyword(s):

Service Oriented Architecture ◽

Three Dimensional ◽

Distributed Applications ◽

Point Of View ◽

Security Model ◽

Loosely Coupled ◽

Service Oriented ◽

Soa Security ◽

Security Standards ◽

Environment Service

In today's Web environment, Service Oriented Architecture (SOA) becomes an efficient paradigm to integrate distributed applications. Due to loosely coupled nature of SOA, security is one of the most important issues that must be considered in SOA-based environments. Most of the existing security solutions are proposed only from one certain point of view, and they are difficult to integrate together. In this paper, an integrated framework for SOA are proposed to provides an overall security solution, which contains a three-dimensional security model, a security architecture and related security standards.

Download Full-text

Micro-Services

Advances in Systems Analysis, Software Engineering, and High Performance Computing - Data Intensive Distributed Computing ◽

10.4018/978-1-61520-971-2.ch003 ◽

2012 ◽

pp. 74-93 ◽

Cited By ~ 3

Author(s):

Arcot Rajasekar ◽

Mike Wan ◽

Reagan Moore ◽

Wayne Schroeder

Keyword(s):

Data Management ◽

Large Scale ◽

Service Oriented Architecture ◽

Distributed Data ◽

Service Oriented Architectures ◽

Loosely Coupled ◽

Server Side ◽

Data Object ◽

Service Oriented ◽

Functional Software

Service-oriented architectures (SOA) enable orchestration of loosely-coupled and interoperable functional software units to develop and execute complex but agile applications. Data management on a distributed data grid can be viewed as a set of operations that are performed across all stages in the life-cycle of a data object. The set of such operations depends on the type of objects, based on their physical and discipline-centric characteristics. In this chapter, the authors define server-side functions, called micro-services, which are orchestrated into conditional workflows for achieving large-scale data management specific to collections of data. Micro-services communicate with each other using parameter exchange, in memory data structures, a database-based persistent information store, and a network messaging system that uses a serialization protocol for communicating with remote micro-services. The orchestration of the workflow is done by a distributed rule engine that chains and executes the workflows and maintains transactional properties through recovery micro-services. They discuss the micro-service oriented architecture, compare the micro-service approach with traditional SOA, and describe the use of micro-services for implementing policy-based data management systems.

Download Full-text

A Survey on Web Service Discovery Approaches

10.54216/fpa.050202 ◽

2021 ◽

pp. 53-60

Author(s):

Abdelghany Mosa ◽

◽

Ahmed Abdelaziz

Keyword(s):

Web Services ◽

Web Service ◽

Service Discovery ◽

Service Oriented Architecture ◽

New Approach ◽

Web Service Discovery ◽

Loosely Coupled ◽

Advantages And Disadvantages ◽

Service Oriented ◽

The Web

Service Oriented Architecture (SOA) is an approach to build distributed systems that deliver application functionality as services that are language and platform-independent. Web service is one of the fundamental technologies in implementing SOA based applications. Web services are modular, self-describing, self-contained and loosely coupled applications that can be published, located, and invoked across the web. As the number of web services is increased, finding a set of suitable web service candidates with regard to a user’s requirement becomes a challenge. Web service discovery is the process of finding the most suitable service by matching service descriptions against service requests. Various approaches for web service discovery have been proposed. In this paper, we present an overview of different approaches for web service discovery described in the literature and try to classify them into different categories. We also determine the advantages and disadvantages of each category. The goal is to help researchers to propose a new approach or to select the most appropriate existing approach for service discovery.

Download Full-text

Introduction to Containerization

International Journal for Modern Trends in Science and Technology - RTT2020 ◽

10.46501/ijmtst061255 ◽

2020 ◽

Vol 6 (12) ◽

pp. 294-300

Author(s):

Raghav Goel and Dr. Bhoomi Gupta

Keyword(s):

Large Scale ◽

Software Engineer ◽

Service Oriented Architecture ◽

Use Case ◽

Production Environment ◽

Code Base ◽

Enterprise Applications ◽

Service Oriented ◽

Multiple Services ◽

Local Machine

Are you a software engineer/developer/coder or maybe even a tech enthusiast who is thinking of agility, parallel development and reducing cost. In the early twentieth century, we witnessed the rise of Service Oriented Architecture (SOA), which is a software architecture pattern that allows us to construct large-scale enterprise applications that require us to integrate multiple services, each of which is made over different platforms and languages through a common communication mechanism, where we write code and multiple services talk to each other’s for a business use case, but sometimes we end up with one big monolithic code base whose maintenance becomes difficult. Nowadays clients are using cloud and paying for on-demand services without effectively utilizing resources. These problems invite micro-services. In this paper, I am going to discuss how one should use scale application in a production environment and local machine

Download Full-text

Design and Implementation of Network Management Architecture for Wireless Sensor Networks

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.433-440.3895 ◽

2012 ◽

Vol 433-440 ◽

pp. 3895-3899 ◽

Cited By ~ 1

Author(s):

Ray I Chang ◽

Chi Cheng Chuang

Keyword(s):

Web Services ◽

Network Management ◽

Service Oriented Architecture ◽

Wireless Sensor ◽

Memory Space ◽

Loosely Coupled ◽

Sensor Platforms ◽

Management Architecture ◽

Service Oriented ◽

Network Management Architecture

Traditional NM (Network Management) techniques can not be applied on WSN (Wireless Sensor Network) due to its features of low computing ability, tiny memory space, and limited energy. A new NMA (Network Management Architecture) for WSN is needed. In this paper, we design a loosely coupled NMA of WSN based on SOA (Service-Oriented Architecture), and have well defined NM interfaces. Finally, we develop a SOA platform for WSN operations according to the NMA. Based on SOA platform, users can compose and use various NM Web Services by internet depending on their requirements. Heavy tasks which need a great deal of computing resources and storage are executed on the SOA platform. Thus, energy consumption and node computation can be decreased. Moreover, external applications use Web Services to integrate SOA platform for WSN. It lowers the difficulty in integrating different sensor platforms and heterogeneous devices.

Download Full-text

A Theoretical Foundation of Demand Driven Web Services

Cloud Technology ◽

10.4018/978-1-4666-6539-2.ch018 ◽

2015 ◽

pp. 392-422

Author(s):

Zhaohao Sun ◽

John Yearwood

Keyword(s):

Web Services ◽

Social Services ◽

Service Oriented Architecture ◽

State Of The Art ◽

The State ◽

Cloud Services ◽

Pivotal Role ◽

The Internet ◽

Service Oriented ◽

The Web

Web services are playing a pivotal role in business, management, governance, and society with the dramatic development of the Internet and the Web. However, many fundamental issues are still ignored to some extent. For example, what is the unified perspective to the state-of-the-art of Web services? What is the foundation of Demand-Driven Web Services (DDWS)? This chapter addresses these fundamental issues by examining the state-of-the-art of Web services and proposing a theoretical and technological foundation for demand-driven Web services with applications. This chapter also presents an extended Service-Oriented Architecture (SOA), eSMACS SOA, and examines main players in this architecture. This chapter then classifies DDWS as government DDWS, organizational DDWS, enterprise DDWS, customer DDWS, and citizen DDWS, and looks at the corresponding Web services. Finally, this chapter examines the theoretical, technical foundations for DDWS with applications. The proposed approaches will facilitate research and development of Web services, mobile services, cloud services, and social services.

Download Full-text

Service-Oriented Computing

Service Life Cycle Tools and Technologies ◽

10.4018/978-1-61350-159-7.ch001 ◽

2013 ◽

pp. 1-20 ◽

Cited By ~ 1

Author(s):

Stéphanie Chollet ◽

Philippe Lalanda ◽

Jonathan Bardin

Keyword(s):

Web Services ◽

Service Oriented Architecture ◽

Application Integration ◽

New Paradigm ◽

Loosely Coupled ◽

Service Oriented Computing ◽

Service Oriented ◽

Scale Network ◽

Computing Platforms ◽

Multiple Domains

The visionary promise of Service-Oriented Computing (SOC) is a world-scale network of loosely coupled services that can be assembled with little effort in agile applications that may span organizations and computing platforms. In practice, services are assembled in a Service-Oriented Architecture (SOA) that provides mechanisms and rules to specify, publish, discover and compose available services. The aim of this chapter is to present the different technologies implementing the new paradigm of SOA: Web Services, UPnP, DPWS, and service-oriented component OSGi and iPOJO. These technologies have been developed and adapted to multiple domains: application integration, pervasive computing and dynamic application integration.

Download Full-text

A Framework and Protocols for Service Contract Agreements Based on International Contract Law

Innovations, Standards and Practices of Web Services ◽

10.4018/978-1-61350-104-7.ch010 ◽

2013 ◽

pp. 216-231

Author(s):

Michael Parkin ◽

Dean Kuo ◽

John Brooke

Keyword(s):

Service Oriented Architecture ◽

Contract Law ◽

Distributed Environment ◽

Service Usage ◽

Negotiated Agreements ◽

Negotiation Protocol ◽

Loosely Coupled ◽

Service Oriented ◽

Geographically Distributed ◽

Domain Independent

Current protocols to agree to Web/Grid service usage do not have the capability to form negotiated agreements, nor do they take into account the legal requirements of the agreement process. This article presents a framework and a domain-independent negotiation protocol for creating legally binding contracts for service usage in a distributed, asynchronous service-oriented architecture. The negotiation protocol, which builds on a simple agreement protocol to form a multiround “symmetric” negotiation protocol, is based on an internationally recognized contract law convention. By basing our protocol on this convention and taking into account the limitations of an asynchronous messaging environment, we can form contracts between autonomous services across national and juridical boundaries, necessary in a loosely coupled, widely geographically distributed environment such as the Grid.

Download Full-text

Issues on the Compatibility of Web Service Contracts

Innovations, Standards and Practices of Web Services ◽

10.4018/978-1-61350-104-7.ch008 ◽

2013 ◽

pp. 154-188 ◽

Cited By ~ 3

Author(s):

Surya Nepal ◽

John Zic

Keyword(s):

Web Service ◽

Service Composition ◽

Large Scale ◽

Service Oriented Architecture ◽

Distributed Applications ◽

Compatibility Conditions ◽

Service Contract ◽

Service Contracts ◽

Service Oriented ◽

Application Developers

In the Service Oriented Architecture (SOA) model, a service is characterized by its exchange of asynchronous messages, and a service contract is a desirable composition of a variety of messages. Though this model is simple, implementing large-scale, cross-organizational distributed applications may be difficult to achieve in general, as there is no guarantee that service composition will be possible because of incompatibilities of Web service contracts. We categorize compatibility issues in Web service contracts into two broad categories: (a) between contracts of different services (which we define as a composability problem), and (b) a service contract and its implementation (which we define as a conformance problem). This chapter examines and addresses these problems, first by identifying and specifying contract compatibility conditions, and second, through the use of compatibility checking tools that enable application developers to perform checks at design time.

Download Full-text

Service Oriented Architecture Conceptual Landscape PART II

New Generation of Portal Software and Engineering ◽

10.4018/978-1-60960-571-1.ch012 ◽

2011 ◽

pp. 142-163

Author(s):

Ed Young

Keyword(s):

Service Oriented Architecture ◽

Face Lift ◽

Loosely Coupled ◽

Heterogeneous Technologies ◽

Service Oriented ◽

Open Service

Contemporary architectural approach is for an orchestrated, agnostic, federated enterprise through the adoption of loosely-coupled open Service interfaces. The Service-Oriented Architecture (SOA) paradigm unifies disparate, heterogeneous technologies. It resurrects legacy technology silos with a Service ‘face-lift’ while maintaining their autonomy. Somewhat in its infancy as standards and methodologies are evaluated and adopted, the differences between theory and praxis of SOA remain to be fully determined, predominately due to the size and complexity of the conundrum it addresses.

Download Full-text