Title :
A Performance Evaluation of Security Mechanisms for Web Services
Author :
Alrouh, Bachar ; Ghinea, Gheorghita
Author_Institution :
Sch. of Inf. Syst., Comput. & Math., Brunel Univ., Uxbridge, UK
Abstract :
Recently, Web services security has shown a significant gesture as several specifications have been developed and implemented to meet the security challenges of Web services. However, the performance of the security mechanisms is fraught with concerns due to additional security contents in SOAP messages, the higher number of message exchanges to establish trust as well as extra CPU time to process these additions. In this paper, we consider and compare the performance of various security mechanisms applied on a simple Web service tested with different initial message sizes. The test results show that transport layer security mechanisms are considerably faster than message level security mechanisms. Moreover, the effect of adding SAML tokens is negligible and the performance of SAML-based Web services depends mostly on the underlying security mechanisms. Finally, the performance penalty of applying STS security mechanisms is significantly high comparing to non-STS mechanisms.
Keywords :
Web services; XML; security of data; software performance evaluation; SAML tokens; SOAP message security; STS security mechanism; Web services security; message level security mechanism; performance evaluation; simple object access protocol; transport layer security mechanism; Cryptography; Information security; Information systems; Mathematics; Performance analysis; Simple object access protocol; Sociotechnical systems; Testing; Web services; XML; Performance; Security; WSIT; Web Services;
Conference_Titel :
Information Assurance and Security, 2009. IAS '09. Fifth International Conference on
Conference_Location :
Xi´an
Print_ISBN :
978-0-7695-3744-3
DOI :
10.1109/IAS.2009.252
