{"title":"面向SOA网络的完整性模型","authors":"M. Al-Kofahi, Su-Hua Chang, Thomas E. Daniels","doi":"10.1109/ICWS.2008.58","DOIUrl":null,"url":null,"abstract":"Interest in service oriented architecture (SOA) is rapidly increasing in the business world due to the many benefits it offers such as reliability, manageability, reusability, flexibility, efficiency, and interoperability. There are many security technologies and models being developed for SOA. They implement or encode specific aspects of authentication, authorization, encryption, trust, and access control respectively but none of them was entirely devoted to integrity. In this paper we propose service Clark-Wilson integrity model (SCWIM), a top down integrity model for SOA capable of describing sufficient conditions to protect data integrity in any SOA implementation. Based on the original Clark-Wilson integrity model, our model can form the basis for system security audits and assist SOA architects in developing systems that protect data integrity, as well as providing guidance for evaluating existing SOA systems.","PeriodicalId":275591,"journal":{"name":"2008 IEEE International Conference on Web Services","volume":"15 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-09-23","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":"{\"title\":\"SCWIM an Integrity Model for SOA Networks\",\"authors\":\"M. Al-Kofahi, Su-Hua Chang, Thomas E. Daniels\",\"doi\":\"10.1109/ICWS.2008.58\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Interest in service oriented architecture (SOA) is rapidly increasing in the business world due to the many benefits it offers such as reliability, manageability, reusability, flexibility, efficiency, and interoperability. There are many security technologies and models being developed for SOA. They implement or encode specific aspects of authentication, authorization, encryption, trust, and access control respectively but none of them was entirely devoted to integrity. In this paper we propose service Clark-Wilson integrity model (SCWIM), a top down integrity model for SOA capable of describing sufficient conditions to protect data integrity in any SOA implementation. Based on the original Clark-Wilson integrity model, our model can form the basis for system security audits and assist SOA architects in developing systems that protect data integrity, as well as providing guidance for evaluating existing SOA systems.\",\"PeriodicalId\":275591,\"journal\":{\"name\":\"2008 IEEE International Conference on Web Services\",\"volume\":\"15 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-09-23\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"4\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 IEEE International Conference on Web Services\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICWS.2008.58\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 IEEE International Conference on Web Services","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICWS.2008.58","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Interest in service oriented architecture (SOA) is rapidly increasing in the business world due to the many benefits it offers such as reliability, manageability, reusability, flexibility, efficiency, and interoperability. There are many security technologies and models being developed for SOA. They implement or encode specific aspects of authentication, authorization, encryption, trust, and access control respectively but none of them was entirely devoted to integrity. In this paper we propose service Clark-Wilson integrity model (SCWIM), a top down integrity model for SOA capable of describing sufficient conditions to protect data integrity in any SOA implementation. Based on the original Clark-Wilson integrity model, our model can form the basis for system security audits and assist SOA architects in developing systems that protect data integrity, as well as providing guidance for evaluating existing SOA systems.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
