Generic Security Policy Transformation Framework for WS-Security

Salt Lake City, Utah, USA July 09-July 13

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ICWS.2007.92

IEEE International Conference on Web ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Fumiko Satoh Articles by Yumi Yamaguchi

	ASCII Text	x
	Fumiko Satoh, Yumi Yamaguchi, "Generic Security Policy Transformation Framework for WS-Security," Web Services, IEEE International Conference on, pp. 513-520, IEEE International Conference on Web Services (ICWS 2007), 2007.

	BibTex	x
	@article{ 10.1109/ICWS.2007.92, author = {Fumiko Satoh and Yumi Yamaguchi}, title = {Generic Security Policy Transformation Framework for WS-Security}, journal ={Web Services, IEEE International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2924-0}, pages = {513-520}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICWS.2007.92}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Web Services, IEEE International Conference on TI - Generic Security Policy Transformation Framework for WS-Security SN - 0-7695-2924-0 SP513 EP520 A1 - Fumiko Satoh, A1 - Yumi Yamaguchi, PY - 2007 KW - null VL - 0 JA - Web Services, IEEE International Conference on ER -

Fumiko Satoh, IBM Tokyo Research Laboratory

Yumi Yamaguchi, IBM Tokyo Research Laboratory

Model-Driven Security is a framework to configure WS-Security easily. It generates a security policy written in WS-SecurityPolicy to be transformed into platformspecific configuration files. Since the WS-SecurityPolicy specification is quite complicated, it is difficult to directly map between a security policy and a configuration. We propose a generic security policy transformation framework using an intermediate model. The intermediate model structure is designed based on the WS-Security message structure, because both a security policy and the configuration files correspond to one WS-Security message, even though the WS-SecurityPolicy is flexible in specifying security requirements. Our contributions are simpler transformation rules compared to direct mapping, the support for various platforms, and more flexible updates if the WS-SecurityPolicy specification changes. We demonstrate the transformation using the intermediate model for WebSphere Application Server 6.0.

Citation:

Fumiko Satoh, Yumi Yamaguchi, "Generic Security Policy Transformation Framework for WS-Security," icws, pp.513-520, IEEE International Conference on Web Services (ICWS 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.