Authorization service for Web Services and its application in a health care domain

Sarath Indrakanti; Vijay Varadharajan; Michael Hitchens

Authorization service for Web Services and its application in a health care domain

Sarath Indrakanti, Vijay Varadharajan, Michael Hitchens

Research output: Contribution to journal › Review article › peer-review

Abstract

In this paper, we discuss the design issues for an authorization framework for Web Services. In particular, we describe the features required for an authorization policy language for Web Services. We briefly introduce the authorization service provided by Microsoft .NET MyServices and describe our extended authorization model that proposes extensions to the .NET MyServices authorization service to support a range of authorization policies required in commercial systems. We discuss the application of the extended authorization model to a health care system built using Web Services. We use the XML Access Control Language (XACL) in our implementation to demonstrate our extended authorization model. This also enables us to evaluate the range of authorization policies that XACL supports.

Original language	English
Pages (from-to)	94-119
Number of pages	26
Journal	International Journal of Web Services Research
Volume	2
Issue number	4
Publication status	Published - 2005

Cite this

@article{8ec1a70e0f76412d8b606353dc6c3981,

title = "Authorization service for Web Services and its application in a health care domain",

abstract = "In this paper, we discuss the design issues for an authorization framework for Web Services. In particular, we describe the features required for an authorization policy language for Web Services. We briefly introduce the authorization service provided by Microsoft .NET MyServices and describe our extended authorization model that proposes extensions to the .NET MyServices authorization service to support a range of authorization policies required in commercial systems. We discuss the application of the extended authorization model to a health care system built using Web Services. We use the XML Access Control Language (XACL) in our implementation to demonstrate our extended authorization model. This also enables us to evaluate the range of authorization policies that XACL supports.",

author = "Sarath Indrakanti and Vijay Varadharajan and Michael Hitchens",

year = "2005",

language = "English",

volume = "2",

pages = "94--119",

journal = "International Journal of Web Services Research",

issn = "1545-7362",

publisher = "IGI Global",

number = "4",

}

TY - JOUR

T1 - Authorization service for Web Services and its application in a health care domain

AU - Indrakanti, Sarath

AU - Varadharajan, Vijay

AU - Hitchens, Michael

PY - 2005

Y1 - 2005

N2 - In this paper, we discuss the design issues for an authorization framework for Web Services. In particular, we describe the features required for an authorization policy language for Web Services. We briefly introduce the authorization service provided by Microsoft .NET MyServices and describe our extended authorization model that proposes extensions to the .NET MyServices authorization service to support a range of authorization policies required in commercial systems. We discuss the application of the extended authorization model to a health care system built using Web Services. We use the XML Access Control Language (XACL) in our implementation to demonstrate our extended authorization model. This also enables us to evaluate the range of authorization policies that XACL supports.

AB - In this paper, we discuss the design issues for an authorization framework for Web Services. In particular, we describe the features required for an authorization policy language for Web Services. We briefly introduce the authorization service provided by Microsoft .NET MyServices and describe our extended authorization model that proposes extensions to the .NET MyServices authorization service to support a range of authorization policies required in commercial systems. We discuss the application of the extended authorization model to a health care system built using Web Services. We use the XML Access Control Language (XACL) in our implementation to demonstrate our extended authorization model. This also enables us to evaluate the range of authorization policies that XACL supports.

UR - http://www.scopus.com/inward/record.url?scp=25144452376&partnerID=8YFLogxK

M3 - Review article

AN - SCOPUS:25144452376

SN - 1545-7362

VL - 2

SP - 94

EP - 119

JO - International Journal of Web Services Research

JF - International Journal of Web Services Research

IS - 4

ER -

Authorization service for Web Services and its application in a health care domain

Abstract

Other files and links

Fingerprint

Cite this