Security Framework for DPWS Compliant Devices

Abstract

The DPWS (Devices Profile for Web Services) specification enables devices, including small-scale ones, to be integrated seamlessly in a service oriented architecture (SOA). Complex enterprise applications are able to access devices functionalities in a Web Service fashion. In some cases, specific applications might require secure transactions that even devices with resources constraints must meet. Devices with hardly 10KB of run time memory and low speed processors might slow down or run out of memory when ciphering or signing large secure messages. This paper proposes a security model that complies with existing security specifications for Web Services and optimizes resources consumptions in such devices.