A Multi-Party Non-Repudiation Protocol
Proceedings of the IFIP TC11 Fifteenth Annual Working Conference on Information Security for Global Information Infrastructures
Service-Oriented Architecture: Concepts, Technology, and Design
Service-Oriented Architecture: Concepts, Technology, and Design
Towards a MOF/QVT-Based domain architecture for model driven security
MoDELS'06 Proceedings of the 9th international conference on Model Driven Engineering Languages and Systems
An intensive survey of fair non-repudiation protocols
Computer Communications
Middleware support for complex and distributed security services in multi-tier web applications
ESSoS'11 Proceedings of the Third international conference on Engineering secure software and systems
Hi-index | 0.00 |
''Non-repudiation'', a well known concept in security engineering, provides measures to ensure that participants in a communication process cannot deny having participated. This concept is of eminent importance in business cases based on service oriented architectures (e.g. electronic billing). However, there is no sophisticated standard implementing fair Non-repudiation in such an environment. In this paper, we will introduce a framework providing fair Non-repudiation for Web service messages. It implements an arbitrary, pre-defined protocol using Web services technology, but completely hides the protocol execution from the target Web services. To allow the integration of security requirements in an early stage of the development cycle, a model-driven configuration approach is used. Furthermore, the procedure is not tied to Non-repudiation protocols only, which means that a broad range of protocols can be integrated in a similar way. The framework presented in this paper leverages existing standards and protocols for an efficient adoption in service oriented architectures.