An effective access control approach to support web service security

  • Authors:

  • Mahdi Sharifi;Homa Movahednejad;Sayed Gholam Hassan Tabatabei;Suhaimi Ibrahim

  • Affiliations:

  • Universiti Teknologi Malaysia (UTM), Skudai, Johor Baru, Malaysia;Universiti Teknologi Malaysia (UTM), Skudai, Johor Baru, Malaysia;Universiti Teknologi Malaysia (UTM), Skudai, Johor Baru, Malaysia;Universiti Teknologi Malaysia (UTM), Skudai, Johor Baru, Malaysia

  • Venue:
  • Proceedings of the 11th International Conference on Information Integration and Web-based Applications & Services
  • Year:
  • 2009

Quantified Score

Hi-index 0.00

Visualization

Abstract

Nowadays, different devices and applications require interconnecting and communicating in convenient manner on the Internet. This can be achieved by Web service technology. Regarding the open and unreliable Internet where Web services applications run over it, security for Web services is a necessity and should be applied to keep service providers and requestors in a secure side. Furthermore, access control systems are built to provide protection with the intention to protect resources and information from unlawful access. However, the design of effective access control schemas is a key challenge in Web service security. In this paper, we propose an access control framework to support Web service security through strong authentication and authorization. In that case, SAML and context-aware role-based access control are employed in our framework design. Based on the result of our comparative evaluation of the proposed approach with other existing ones, the approach provides an effective solution to support security in Web services interoperability.