Title :
Enforcing distributed data security via Web services
Author :
Weaver, Alfred C.
Author_Institution :
Dept. of Comput. Sci., Virginia Univ., Charlottesville, VA, USA
Abstract :
As the manufacturing and process industries become more intelligent and more distributed, the need for reliable, secure, and verifiable data exchange becomes more acute. We have developed an approach to distributed data security based upon Web services. Each Web service specifies its authentication and authorization policies using WS-policy documents combined with our novel concepts of trust levels and trust level mappings across domains. An authentication Web service verifies human identity via biometric and other digital techniques: software applications are vetted by digital signatures. An authorization Web service enforces a dynamic, context-aware access policy. Federation is used to manage trust relationships across separate but cooperating trust domains.
Keywords :
Internet; authorisation; biometrics (access control); digital signatures; authentication Web service; authentication policy; authorization Web service; authorization policy; biometrics; digital signatures; digital techniques; distributed data security; manufacturing industry; process industry; software applications; Application software; Authentication; Authorization; Biometrics; Data security; Digital signatures; Humans; Manufacturing industries; Manufacturing processes; Web services;
Conference_Titel :
Factory Communication Systems, 2004. Proceedings. 2004 IEEE International Workshop on
Print_ISBN :
0-7803-8734-1
DOI :
10.1109/WFCS.2004.1377757
