Fine-Grain, End-to-End Security for Web Service Compositions

Salt Lake City, Utah, USA July 09-July 13

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/SCC.2007.61

IEEE International Conference on Serv ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Lenin Singaravelu Articles by Calton Pu

	ASCII Text	x
	Lenin Singaravelu, Calton Pu, "Fine-Grain, End-to-End Security for Web Service Compositions," Services Computing, IEEE International Conference on, pp. 212-219, IEEE International Conference on Services Computing (SCC 2007), 2007.

	BibTex	x
	@article{ 10.1109/SCC.2007.61, author = {Lenin Singaravelu and Calton Pu}, title = {Fine-Grain, End-to-End Security for Web Service Compositions}, journal ={Services Computing, IEEE International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2925-9}, pages = {212-219}, doi = {http://doi.ieeecomputersociety.org/10.1109/SCC.2007.61}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Services Computing, IEEE International Conference on TI - Fine-Grain, End-to-End Security for Web Service Compositions SN - 0-7695-2925-9 SP212 EP219 A1 - Lenin Singaravelu, A1 - Calton Pu, PY - 2007 KW - null VL - 0 JA - Services Computing, IEEE International Conference on ER -

Lenin Singaravelu, Georgia Institute of Technology

Calton Pu, Georgia Institute of Technology

Web service composition introduces two research challenges to end-to-end integrity and confidentiality of information flow. First, component services need the ability to selectively read or modify information flows. Second, component web services may or may not be trusted by all participants in the same degree. Existing specifications such as WS-Security provide finegrained signatures and encryption for pair-wise interactions, but insufficient support for end-to-end security properties in open environments. Using an electronic prescription application, we illustrate the need for an enhanced framework for providing end-to-end security properties. We then describe a fine-grained, security framework, called WS-FESec, that leverages WSSecurity to support flexible preservation of end-to-end integrity and confidentiality in web service compositions. Finally, we discuss WS-FESec?s support for the lattice model of secure information flow and show how it can be employed to preserve end-to-end security properties in the electronic prescriptions application.

Citation:

Lenin Singaravelu, Calton Pu, "Fine-Grain, End-to-End Security for Web Service Compositions," scc, pp.212-219, IEEE International Conference on Services Computing (SCC 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.