Georgios Katsikogiannis, S. Mitropoulos, C. Douligeris
{"title":"用于SOA的身份和访问管理方法","authors":"Georgios Katsikogiannis, S. Mitropoulos, C. Douligeris","doi":"10.1109/ISSPIT.2016.7886021","DOIUrl":null,"url":null,"abstract":"Various Identity and Access Management (IAM) architectural challenges are emerging for the effective deployment of applications in a Service-Oriented Architecture (SOA) context. SOA solutions should incorporate efficient access control techniques and adopt an optimal setup among countless and complex approaches in providing access control services. Web Single Sign-on (SSO), federated identities, password synchronization and service granularity can be accomplished through the IAM capabilities, so that SOA can address and fulfil most of the contemporary access management challenges. This paper proposes an innovative model to manage the multilevel integration of identity, authentication and authorization modules based on formal policy-based methods and various access control mechanisms in order to provide secure access to the resources. In the proposed model, we analyze and integrate identity, authentication, user roles, authorization access control levels, and rule validation mechanisms. Finally, the model offers policy-based and integration capabilities enabling automated controls, improved efficiency and simplified management.","PeriodicalId":371691,"journal":{"name":"2016 IEEE International Symposium on Signal Processing and Information Technology (ISSPIT)","volume":"124 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":"{\"title\":\"An Identity and Access Management approach for SOA\",\"authors\":\"Georgios Katsikogiannis, S. Mitropoulos, C. Douligeris\",\"doi\":\"10.1109/ISSPIT.2016.7886021\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Various Identity and Access Management (IAM) architectural challenges are emerging for the effective deployment of applications in a Service-Oriented Architecture (SOA) context. SOA solutions should incorporate efficient access control techniques and adopt an optimal setup among countless and complex approaches in providing access control services. Web Single Sign-on (SSO), federated identities, password synchronization and service granularity can be accomplished through the IAM capabilities, so that SOA can address and fulfil most of the contemporary access management challenges. This paper proposes an innovative model to manage the multilevel integration of identity, authentication and authorization modules based on formal policy-based methods and various access control mechanisms in order to provide secure access to the resources. In the proposed model, we analyze and integrate identity, authentication, user roles, authorization access control levels, and rule validation mechanisms. Finally, the model offers policy-based and integration capabilities enabling automated controls, improved efficiency and simplified management.\",\"PeriodicalId\":371691,\"journal\":{\"name\":\"2016 IEEE International Symposium on Signal Processing and Information Technology (ISSPIT)\",\"volume\":\"124 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"11\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 IEEE International Symposium on Signal Processing and Information Technology (ISSPIT)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ISSPIT.2016.7886021\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE International Symposium on Signal Processing and Information Technology (ISSPIT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISSPIT.2016.7886021","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
An Identity and Access Management approach for SOA
Various Identity and Access Management (IAM) architectural challenges are emerging for the effective deployment of applications in a Service-Oriented Architecture (SOA) context. SOA solutions should incorporate efficient access control techniques and adopt an optimal setup among countless and complex approaches in providing access control services. Web Single Sign-on (SSO), federated identities, password synchronization and service granularity can be accomplished through the IAM capabilities, so that SOA can address and fulfil most of the contemporary access management challenges. This paper proposes an innovative model to manage the multilevel integration of identity, authentication and authorization modules based on formal policy-based methods and various access control mechanisms in order to provide secure access to the resources. In the proposed model, we analyze and integrate identity, authentication, user roles, authorization access control levels, and rule validation mechanisms. Finally, the model offers policy-based and integration capabilities enabling automated controls, improved efficiency and simplified management.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
