Christian Emig, F. Brandt, S. Abeck, J. Biermann, Heiko Klarl
{"title":"面向服务的Web体系结构的访问控制元模型","authors":"Christian Emig, F. Brandt, S. Abeck, J. Biermann, Heiko Klarl","doi":"10.1109/ICSEA.2007.15","DOIUrl":null,"url":null,"abstract":"With the mutual consent to use WSDL (Web Service Description Language) to describe web service interfaces and SOAP as the basic communication protocol, the cornerstone for web service-oriented architecture (WSOA) has been established. Considering the momentum observable by the growing number of specifications in the web service domain for the indispensable cross-cutting concern of identity management (IdM) it is still an open issue how a WSOA-aware IdM architecture is built and how it is linked with WSOA's main elements, the web services providing functional core concerns. In this paper we present an access control model for WSOA and a blueprint of a WSOA- aware authorization verification service which is part of the IdM architecture. We show the integration of this service with WSOA consisting of both basic and composite web services. Our solution has been tested and evaluated in an implementation case study.","PeriodicalId":395851,"journal":{"name":"International Conference on Software Engineering Advances (ICSEA 2007)","volume":"23 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2007-08-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"30","resultStr":"{\"title\":\"An Access Control Metamodel for Web Service-Oriented Architecture\",\"authors\":\"Christian Emig, F. Brandt, S. Abeck, J. Biermann, Heiko Klarl\",\"doi\":\"10.1109/ICSEA.2007.15\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"With the mutual consent to use WSDL (Web Service Description Language) to describe web service interfaces and SOAP as the basic communication protocol, the cornerstone for web service-oriented architecture (WSOA) has been established. Considering the momentum observable by the growing number of specifications in the web service domain for the indispensable cross-cutting concern of identity management (IdM) it is still an open issue how a WSOA-aware IdM architecture is built and how it is linked with WSOA's main elements, the web services providing functional core concerns. In this paper we present an access control model for WSOA and a blueprint of a WSOA- aware authorization verification service which is part of the IdM architecture. We show the integration of this service with WSOA consisting of both basic and composite web services. Our solution has been tested and evaluated in an implementation case study.\",\"PeriodicalId\":395851,\"journal\":{\"name\":\"International Conference on Software Engineering Advances (ICSEA 2007)\",\"volume\":\"23 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2007-08-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"30\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Conference on Software Engineering Advances (ICSEA 2007)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSEA.2007.15\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Conference on Software Engineering Advances (ICSEA 2007)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSEA.2007.15","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 30
摘要
双方同意使用WSDL (Web Service Description Language, Web服务描述语言)来描述Web服务接口,并使用SOAP作为基本的通信协议,为面向服务的Web体系结构(WSOA)奠定了基础。考虑到web服务领域中越来越多的规范对身份管理(IdM)不可或缺的横切面关注的势头,如何构建支持WSOA的IdM体系结构以及如何将其与WSOA的主要元素(提供功能核心关注的web服务)联系起来仍然是一个有待解决的问题。在本文中,我们提出了一个WSOA的访问控制模型和一个WSOA感知授权验证服务的蓝图,该服务是IdM体系结构的一部分。我们将展示此服务与由基本web服务和组合web服务组成的WSOA的集成。我们的解决方案已经在一个实现案例研究中进行了测试和评估。
An Access Control Metamodel for Web Service-Oriented Architecture
With the mutual consent to use WSDL (Web Service Description Language) to describe web service interfaces and SOAP as the basic communication protocol, the cornerstone for web service-oriented architecture (WSOA) has been established. Considering the momentum observable by the growing number of specifications in the web service domain for the indispensable cross-cutting concern of identity management (IdM) it is still an open issue how a WSOA-aware IdM architecture is built and how it is linked with WSOA's main elements, the web services providing functional core concerns. In this paper we present an access control model for WSOA and a blueprint of a WSOA- aware authorization verification service which is part of the IdM architecture. We show the integration of this service with WSOA consisting of both basic and composite web services. Our solution has been tested and evaluated in an implementation case study.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
