Sciweavers

Share
ICWS
2010
IEEE

A Pattern-Driven Generation of Security Policies for Service-Oriented Architectures

9 years 7 months ago
A Pattern-Driven Generation of Security Policies for Service-Oriented Architectures
Service-oriented Architectures support the provision, discovery, and usage of services in different application contexts. The Web Service specifications provide a technical foundation to implement this paradigm. Moreover, mechanisms are provided to face the new security challenges raised by SOA. To enable the seamless usage of services, security requirements can be expressed as security policies (e.g. WS-Policy and WSSecurityPolicy) that enable the negotiation of these requirements between clients and services. However, the codification of security policies is a difficult and error-prone task due to the complexity of the Web Service specifications. In this paper, we introduce our model-driven approach that facilitates the transformation of architecture models annotated with simple security intention to security policies. This transformation is driven by security configuration patterns that provide expert knowledge on Web Service security. Therefore, we will introduce a formalised patt...
Michael Menzel, Robert Warschofsky, Christoph Mein
Added 29 Oct 2010
Updated 29 Oct 2010
Type Conference
Year 2010
Where ICWS
Authors Michael Menzel, Robert Warschofsky, Christoph Meinel
Comments (0)
books