The University of Southampton
University of Southampton Institutional Repository

Design Considerations for Implementing Security in Web Services

Design Considerations for Implementing Security in Web Services
Design Considerations for Implementing Security in Web Services
The rapid growth in XML and increasing use of World Wide Web allow users to use internet as a platform for document sharing and hosting embedded with certain security features. XML is becoming most prevalent means through which documents and data are encoded for distribution among users on the web. Currently no strict security models and mechanisms are available that can provide specification and enforcement of security policies for XML documents. Such models are crucial in order to facilitate a secure dissemination of XML documents, containing information of different sensitivity levels, among (possibly large) user communities. This paper concentrates on proposing key design considerations to implement the PKI enables security in XML documents, by defining a component model and processing rules that can be shared across applications using common tools, avoiding the need for extensive customisation of applications to add security. The considerations reuses the concepts, algorithms and core technologies of legacy security systems while introducing changes necessary to support extensible integration with XML. This allows interoperability with a wide range of existing infrastructures and across deployments.
Alvi, Fawaz
bbcfb3d3-5752-44f1-a4d2-adb817adeb55
Khoja, Shakeel
78866d27-80a6-454f-92f7-a013ef10c0eb
Jabeen, Zohra
af7fff82-b1e3-4752-9c52-016d5d789055
Alvi, Fawaz
bbcfb3d3-5752-44f1-a4d2-adb817adeb55
Khoja, Shakeel
78866d27-80a6-454f-92f7-a013ef10c0eb
Jabeen, Zohra
af7fff82-b1e3-4752-9c52-016d5d789055

Alvi, Fawaz, Khoja, Shakeel and Jabeen, Zohra (2003) Design Considerations for Implementing Security in Web Services. 2nd International workshop on Grid and Cooperative Computing (GCC 2003), China.

Record type: Conference or Workshop Item (Paper)

Abstract

The rapid growth in XML and increasing use of World Wide Web allow users to use internet as a platform for document sharing and hosting embedded with certain security features. XML is becoming most prevalent means through which documents and data are encoded for distribution among users on the web. Currently no strict security models and mechanisms are available that can provide specification and enforcement of security policies for XML documents. Such models are crucial in order to facilitate a secure dissemination of XML documents, containing information of different sensitivity levels, among (possibly large) user communities. This paper concentrates on proposing key design considerations to implement the PKI enables security in XML documents, by defining a component model and processing rules that can be shared across applications using common tools, avoiding the need for extensive customisation of applications to add security. The considerations reuses the concepts, algorithms and core technologies of legacy security systems while introducing changes necessary to support extensible integration with XML. This allows interoperability with a wide range of existing infrastructures and across deployments.

PDF
2003_china_conf_Design_Considerations_for_Implementing_Security_in_Web_Services.pdf - Other
Download (69kB)

More information

Published date: December 2003
Additional Information: Event Dates: December 2003
Venue - Dates: 2nd International workshop on Grid and Cooperative Computing (GCC 2003), China, 2003-12-01
Organisations: Web & Internet Science

Identifiers

Local EPrints ID: 266565
URI: https://eprints.soton.ac.uk/id/eprint/266565
PURE UUID: 5c521cde-5239-4c24-9ca3-dcc695f0eabe

Catalogue record

Date deposited: 12 Aug 2008 15:28
Last modified: 18 Jul 2017 07:15

Export record

Download statistics

Downloads from ePrints over the past year. Other digital versions may also be available to download e.g. from the publisher's website.

View more statistics

Atom RSS 1.0 RSS 2.0

Contact ePrints Soton: eprints@soton.ac.uk

ePrints Soton supports OAI 2.0 with a base URL of https://eprints.soton.ac.uk/cgi/oai2

This repository has been built using EPrints software, developed at the University of Southampton, but available to everyone to use.

We use cookies to ensure that we give you the best experience on our website. If you continue without changing your settings, we will assume that you are happy to receive cookies on the University of Southampton website.

×