Model-Carrying Code (MCC): a new paradigm for mobile-code security
Proceedings of the 2001 workshop on New security paradigms
ACM Transactions on Internet Technology (TOIT)
An Object-Oriented Approach to Containing Mobile and Active Codes in Large-Scale Networks
WORDS '99 Proceedings of the Fourth International Workshop on Object-Oriented Real-Time Dependable Systems
A portable Virtual Machine target for Proof-Carrying Code
Proceedings of the 2003 workshop on Interpreters, virtual machines and emulators
Enemy at the gate: threats to information security
Communications of the ACM - Program compaction
Externally verifiable code execution
Communications of the ACM - Privacy and security in highly dynamic systems
Modeling issues: a survival guide for a non-expert modeler
MODELS'10 Proceedings of the 13th international conference on Model driven engineering languages and systems: Part II
| Hi-index | 0.00 |
SOA proposed security mechanisms are only centered in the data transmitted between service provider and consumer. However, it's well known that the biggest threats to the integrity of the information are precisely focused not on the data directly but on the code that manages it. Our main statement is that it will only be possible to reach an acceptable level of security if the protection mechanisms cover not only the data but also the code that process these data. In this paper we present a new approach about mobile code security based on the Services Oriented Architecture Reference Model and Web Services technology. This new model allows the development of systems with end-to-end security, where all elements (code and data) are secure.