SOAC: A conceptual model for managing service-oriented authorization

Haiyang Sun; Weiliang Zhao; Jian Yang

doi:10.1109/SCC.2010.13

SOAC: A conceptual model for managing service-oriented authorization

Haiyang Sun^*, Weiliang Zhao, Jian Yang

^*Corresponding author for this work

School of Computing

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

2 Citations (Scopus)

47 Downloads (Pure)

Abstract

A web service can be composed of multiple component web services in a loosely-coupled environment. Traditional Role Based Access Control (RBAC) is inadequate for the authorization management of composite services since the administration of the component web services has not been taken into consideration. In this paper, we propose a novel conceptual model, named as Service Oriented Authorization Control (SOAC) to facilitate the administration and management for both service consumers and component web services. A set of administrative functions are also provided for managing the elements of SOAC. This research will be the first step towards managing service-oriented authorization.

Original language	English
Title of host publication	Proceedings - 2010 IEEE 7th International Conference on Services Computing, SCC 2010
Place of Publication	Piscataway, NJ
Publisher	Institute of Electrical and Electronics Engineers (IEEE)
Pages	546-553
Number of pages	8
ISBN (Print)	9780769541266
DOIs	https://doi.org/10.1109/SCC.2010.13
Publication status	Published - 2010
Event	2010 IEEE 7th International Conference on Services Computing, SCC 2010 - Miami, FL, United States Duration: 5 Jul 2010 → 10 Jul 2010

Other

Other	2010 IEEE 7th International Conference on Services Computing, SCC 2010
Country/Territory	United States
City	Miami, FL
Period	5/07/10 → 10/07/10

Bibliographical note

Copyright 2010 IEEE. Reprinted from 2010 IEEE International Conference on Services Computing : proceedings, Miami, Florida, USA, 5-10 July 2010. This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of Macquarie Universityâ€™s products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to [email protected]. By choosing to view this document, you agree to all provisions of the copyright laws protecting it.

Access to Document

10.1109/SCC.2010.13

Publisher version (open access).pdfFinal published version, 369 KB

Cite this

@inproceedings{d2976c87a88e4ba2a93f4c29762a3196,

title = "SOAC: A conceptual model for managing service-oriented authorization",

abstract = "A web service can be composed of multiple component web services in a loosely-coupled environment. Traditional Role Based Access Control (RBAC) is inadequate for the authorization management of composite services since the administration of the component web services has not been taken into consideration. In this paper, we propose a novel conceptual model, named as Service Oriented Authorization Control (SOAC) to facilitate the administration and management for both service consumers and component web services. A set of administrative functions are also provided for managing the elements of SOAC. This research will be the first step towards managing service-oriented authorization.",

author = "Haiyang Sun and Weiliang Zhao and Jian Yang",

note = "Copyright 2010 IEEE. Reprinted from 2010 IEEE International Conference on Services Computing : proceedings, Miami, Florida, USA, 5-10 July 2010. This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of Macquarie University{\^a}€{\texttrademark}s products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to [email protected]. By choosing to view this document, you agree to all provisions of the copyright laws protecting it.; 2010 IEEE 7th International Conference on Services Computing, SCC 2010 ; Conference date: 05-07-2010 Through 10-07-2010",

year = "2010",

doi = "10.1109/SCC.2010.13",

language = "English",

isbn = "9780769541266",

pages = "546--553",

booktitle = "Proceedings - 2010 IEEE 7th International Conference on Services Computing, SCC 2010",

publisher = "Institute of Electrical and Electronics Engineers (IEEE)",

address = "United States",

}

Sun, H, Zhao, W & Yang, J 2010, SOAC: A conceptual model for managing service-oriented authorization. in Proceedings - 2010 IEEE 7th International Conference on Services Computing, SCC 2010., 5557276, Institute of Electrical and Electronics Engineers (IEEE), Piscataway, NJ, pp. 546-553, 2010 IEEE 7th International Conference on Services Computing, SCC 2010, Miami, FL, United States, 5/07/10. https://doi.org/10.1109/SCC.2010.13

SOAC: A conceptual model for managing service-oriented authorization. / Sun, Haiyang; Zhao, Weiliang ; Yang, Jian.
Proceedings - 2010 IEEE 7th International Conference on Services Computing, SCC 2010. Piscataway, NJ: Institute of Electrical and Electronics Engineers (IEEE), 2010. p. 546-553 5557276.

Research output: Chapter in Book/Report/Conference proceeding › Conference proceeding contribution › peer-review

TY - GEN

T1 - SOAC

T2 - 2010 IEEE 7th International Conference on Services Computing, SCC 2010

AU - Sun, Haiyang

AU - Zhao, Weiliang

AU - Yang, Jian

N1 - Copyright 2010 IEEE. Reprinted from 2010 IEEE International Conference on Services Computing : proceedings, Miami, Florida, USA, 5-10 July 2010. This material is posted here with permission of the IEEE. Such permission of the IEEE does not in any way imply IEEE endorsement of any of Macquarie Universityâ€™s products or services. Internal or personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution must be obtained from the IEEE by writing to [email protected]. By choosing to view this document, you agree to all provisions of the copyright laws protecting it.

PY - 2010

Y1 - 2010

N2 - A web service can be composed of multiple component web services in a loosely-coupled environment. Traditional Role Based Access Control (RBAC) is inadequate for the authorization management of composite services since the administration of the component web services has not been taken into consideration. In this paper, we propose a novel conceptual model, named as Service Oriented Authorization Control (SOAC) to facilitate the administration and management for both service consumers and component web services. A set of administrative functions are also provided for managing the elements of SOAC. This research will be the first step towards managing service-oriented authorization.

AB - A web service can be composed of multiple component web services in a loosely-coupled environment. Traditional Role Based Access Control (RBAC) is inadequate for the authorization management of composite services since the administration of the component web services has not been taken into consideration. In this paper, we propose a novel conceptual model, named as Service Oriented Authorization Control (SOAC) to facilitate the administration and management for both service consumers and component web services. A set of administrative functions are also provided for managing the elements of SOAC. This research will be the first step towards managing service-oriented authorization.

UR - http://www.scopus.com/inward/record.url?scp=77957927856&partnerID=8YFLogxK

U2 - 10.1109/SCC.2010.13

DO - 10.1109/SCC.2010.13

M3 - Conference proceeding contribution

AN - SCOPUS:77957927856

SN - 9780769541266

SP - 546

EP - 553

BT - Proceedings - 2010 IEEE 7th International Conference on Services Computing, SCC 2010

PB - Institute of Electrical and Electronics Engineers (IEEE)

CY - Piscataway, NJ

Y2 - 5 July 2010 through 10 July 2010

ER -

SOAC: A conceptual model for managing service-oriented authorization

Abstract

Other

Bibliographical note

Access to Document

Other files and links

Fingerprint

Cite this