C. Blundo, Emiliano De Cristofaro, Clemente Galdi, G. Persiano
{"title":"使用BPEL和聚合签名验证Web服务的编排","authors":"C. Blundo, Emiliano De Cristofaro, Clemente Galdi, G. Persiano","doi":"10.1109/ECOWS.2008.9","DOIUrl":null,"url":null,"abstract":"In this paper, we present a framework providing integrity and authentication for secure workflow computation based on BPEL Web service orchestration.Whereas much attention has been dedicated to security issues for Web services, no standard and practical solutions have been provided to secure workflows. In this paper, we address a recent cryptographic tool, aggregate signatures, to validate the orchestration by requiring all partners to sign the result of their computation. Security operations are performed during the orchestration and require no change in the services implementation. We present a prototype implementation for validating linear workflows and we evaluate its performance. We further give a generalization of our basic scheme that can be used to validate generic workflows.","PeriodicalId":227761,"journal":{"name":"2008 Sixth European Conference on Web Services","volume":"102 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-11-12","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Validating Orchestration of Web Services with BPEL and Aggregate Signatures\",\"authors\":\"C. Blundo, Emiliano De Cristofaro, Clemente Galdi, G. Persiano\",\"doi\":\"10.1109/ECOWS.2008.9\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper, we present a framework providing integrity and authentication for secure workflow computation based on BPEL Web service orchestration.Whereas much attention has been dedicated to security issues for Web services, no standard and practical solutions have been provided to secure workflows. In this paper, we address a recent cryptographic tool, aggregate signatures, to validate the orchestration by requiring all partners to sign the result of their computation. Security operations are performed during the orchestration and require no change in the services implementation. We present a prototype implementation for validating linear workflows and we evaluate its performance. We further give a generalization of our basic scheme that can be used to validate generic workflows.\",\"PeriodicalId\":227761,\"journal\":{\"name\":\"2008 Sixth European Conference on Web Services\",\"volume\":\"102 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-11-12\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 Sixth European Conference on Web Services\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ECOWS.2008.9\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 Sixth European Conference on Web Services","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ECOWS.2008.9","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Validating Orchestration of Web Services with BPEL and Aggregate Signatures
In this paper, we present a framework providing integrity and authentication for secure workflow computation based on BPEL Web service orchestration.Whereas much attention has been dedicated to security issues for Web services, no standard and practical solutions have been provided to secure workflows. In this paper, we address a recent cryptographic tool, aggregate signatures, to validate the orchestration by requiring all partners to sign the result of their computation. Security operations are performed during the orchestration and require no change in the services implementation. We present a prototype implementation for validating linear workflows and we evaluate its performance. We further give a generalization of our basic scheme that can be used to validate generic workflows.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
