Role-Based Access Control Models
Computer
Fine grained access control for SOAP E-services
Proceedings of the 10th international conference on World Wide Web
Proposed NIST standard for role-based access control
ACM Transactions on Information and System Security (TISSEC)
Web Services Security
A Role based Access Control for Web Services
SCC '04 Proceedings of the 2004 IEEE International Conference on Services Computing
Access Control Model for Web Services with Attribute Disclosure Restriction
ARES '07 Proceedings of the The Second International Conference on Availability, Reliability and Security
A SAML/XACML Based Access Control between Portal and Web Services
ISDPE '07 Proceedings of the The First International Symposium on Data, Privacy, and E-Commerce
Context-Aware Environment-Role-Based Access Control Model for Web Services
MUE '08 Proceedings of the 2008 International Conference on Multimedia and Ubiquitous Engineering
A Context Based Dynamic Access Control Model for Web Service
EUC '08 Proceedings of the 2008 IEEE/IFIP International Conference on Embedded and Ubiquitous Computing - Volume 02
Hi-index | 0.00 |
Nowadays, different devices and applications require interconnecting and communicating in convenient manner on the Internet. This can be achieved by Web service technology. Regarding the open and unreliable Internet where Web services applications run over it, security for Web services is a necessity and should be applied to keep service providers and requestors in a secure side. Furthermore, access control systems are built to provide protection with the intention to protect resources and information from unlawful access. However, the design of effective access control schemas is a key challenge in Web service security. In this paper, we propose an access control framework to support Web service security through strong authentication and authorization. In that case, SAML and context-aware role-based access control are employed in our framework design. Based on the result of our comparative evaluation of the proposed approach with other existing ones, the approach provides an effective solution to support security in Web services interoperability.