Analysis of existing authorization models and requirements for design of authorization framework for the service oriented architecture

Sarath Indrakanti*, Vijay Varadharajan, Michael Hitchens

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contributionpeer-review

1 Citation (Scopus)

Abstract

Although there are several efforts underway to provide security for the Service Oriented Architecture (SOA), there is no specification or standard for authorization. We analyse the currently available authorization models for the Web services and business process layers comprising the SOA and highlight the features that are missing in each of them. Based on our analysis of existing authorization models, we envisage an authorization framework for the SOA to provide extensions to both the security layers of Web services as well as business processes. We lay out separate design principles for authorization services in each of these layers.

Original languageEnglish
Title of host publicationProceedings of the 2005 International Symposium on Web Services and Applications, ISWS'05
Place of PublicationUSA
PublisherCSREA Press
Pages35-41
Number of pages7
ISBN (Print)9781932415728, 1932415726
Publication statusPublished - Jun 2005
Event2005 International Symposium on Web Services and Applications, ISWS'05 - Las Vegas, NV, United States
Duration: 27 Jun 200530 Jun 2005

Other

Other2005 International Symposium on Web Services and Applications, ISWS'05
CountryUnited States
CityLas Vegas, NV
Period27/06/0530/06/05

Keywords

  • Access control and design principles
  • Authorization
  • Business processes
  • Security
  • Web services

Fingerprint

Dive into the research topics of 'Analysis of existing authorization models and requirements for design of authorization framework for the service oriented architecture'. Together they form a unique fingerprint.

Cite this