Subspace: secure cross-domain communication for web mashups
Proceedings of the 16th international conference on World Wide Web
Web 2.0 Creates Security Challenges
Computer
Bite: Workflow Composition for the Web
ICSOC '07 Proceedings of the 5th international conference on Service-Oriented Computing
Composing RESTful Services and Collaborative Workflows: A Lightweight Approach
IEEE Internet Computing
Understanding Mashup Development
IEEE Internet Computing
BPM '08 Proceedings of the 6th International Conference on Business Process Management
Market Overview of Enterprise Mashup Tools
ICSOC '08 Proceedings of the 6th International Conference on Service-Oriented Computing
Hi-index | 0.00 |
Mashups are gaining momentum as a means to develop situational Web applications by combining different resources (services, data feeds) and user interfaces. In enterprise environments, mashups are recently used for implementing Web-based business processes, however, security is a major concern. Current approaches do not allow the mashup to securely consume services with diverse security requirements without sharing the credentials or hard-coding them in the mashup definition. In this paper, we present a solution to integrate security concerns into an existing enterprise mashup platform. We provide an extension to the language and runtime and propose a Secure Authentication Service (SAS) to seamlessly facilitate secure authentication and authorization of end-users with the services consumed in the mashup.