联邦身份验证和授权:案例研究

2008 12th International IEEE Enterprise Distributed Object Computing Conference Pub Date : 2008-09-15 DOI:10.1109/EDOC.2008.36

Oliver Boehm, Jörg Caumanns, M. Franke, Oliver Pfaff

{"title":"联邦身份验证和授权:案例研究","authors":"Oliver Boehm, Jörg Caumanns, M. Franke, Oliver Pfaff","doi":"10.1109/EDOC.2008.36","DOIUrl":null,"url":null,"abstract":"The loose coupling of services is a key characteristic for modern IT-systems based on SOA. This paper analyzes the design and realization of SOA security in a SOA-compliant fashion. It focuses on federated authentication and authorization based on Web services security technologies. The SOA-style infrastructure of the eCR specification is used as a practical case study. eCR systems address the exchange of medical data within regional healthcare networks. Adequate IT-security and especially federated authentication and authorization are imperative for eCR systems.","PeriodicalId":210496,"journal":{"name":"2008 12th International IEEE Enterprise Distributed Object Computing Conference","volume":"113 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2008-09-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Federated Authentication and Authorization: A Case Study\",\"authors\":\"Oliver Boehm, Jörg Caumanns, M. Franke, Oliver Pfaff\",\"doi\":\"10.1109/EDOC.2008.36\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The loose coupling of services is a key characteristic for modern IT-systems based on SOA. This paper analyzes the design and realization of SOA security in a SOA-compliant fashion. It focuses on federated authentication and authorization based on Web services security technologies. The SOA-style infrastructure of the eCR specification is used as a practical case study. eCR systems address the exchange of medical data within regional healthcare networks. Adequate IT-security and especially federated authentication and authorization are imperative for eCR systems.\",\"PeriodicalId\":210496,\"journal\":{\"name\":\"2008 12th International IEEE Enterprise Distributed Object Computing Conference\",\"volume\":\"113 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2008-09-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2008 12th International IEEE Enterprise Distributed Object Computing Conference\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/EDOC.2008.36\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2008 12th International IEEE Enterprise Distributed Object Computing Conference","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/EDOC.2008.36","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

摘要

服务的松散耦合是基于SOA的现代it系统的一个关键特征。本文以SOA兼容的方式分析了SOA安全性的设计和实现。重点介绍基于Web服务安全技术的联邦身份验证和授权。eCR规范的soa风格的基础设施被用作实际案例研究。eCR系统处理区域医疗保健网络内医疗数据的交换。足够的it安全性，特别是联合身份验证和授权对于eCR系统来说是必不可少的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Federated Authentication and Authorization: A Case Study

The loose coupling of services is a key characteristic for modern IT-systems based on SOA. This paper analyzes the design and realization of SOA security in a SOA-compliant fashion. It focuses on federated authentication and authorization based on Web services security technologies. The SOA-style infrastructure of the eCR specification is used as a practical case study. eCR systems address the exchange of medical data within regional healthcare networks. Adequate IT-security and especially federated authentication and authorization are imperative for eCR systems.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2008 12th International IEEE Enterprise Distributed Object Computing Conference

自引率

0.00%

发文量