Model-driven business process security requirement specification
Journal of Systems Architecture: the EUROMICRO Journal
Policy management architecture based on provisioning model and authorization certificates
Proceedings of the 2009 ACM symposium on Applied Computing
A Semantic-Aware Attribute-Based Access Control Model for Web Services
ICA3PP '09 Proceedings of the 9th International Conference on Algorithms and Architectures for Parallel Processing
Intelligent security and access control framework for service-oriented architecture
Information and Software Technology
An extended XACML model to ensure secure information access for web services
Journal of Systems and Software
Policy control management for web services
IM'09 Proceedings of the 11th IFIP/IEEE international conference on Symposium on Integrated Network Management
Modeling and negotiating service quality
Service research challenges and solutions for the future internet
A trust and context aware access control model for web services conversations
TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business
Hi-index | 0.00 |
Web service is a new service-oriented computing paradigm which poses the unique security challenges due to its inherent heterogeneity, multi-domain characteristic and highly dynamic nature. A key challenge in Web services security is the design of effective access control schemes. However, most current access control systems base authorization decisions on subject's identity. Administrative scalability and control granularity are serious problems in those systems, and they are not fit for Web services environment. So an attribute-based access control model (WS-ABAC) is presented to address these issues in this paper. WS-ABAC grants access to services based on attributes of the related entities, and uses automated trust negotiation mechanism to address the disclosure issue of the sensitive attributes. It can provide administratively scalable alternative to identity-based authorization methods and provide fine-grained access control for Web services. Moreover, it also can protect user's privacy.