Title :
PWSSec: Process for Web Services Security
Author :
Gutiérrez, C. ; Fernández-Medina, E. ; Piattini, M.
Author_Institution :
STL, Madrid
Abstract :
In the last few years, the field of Web services (WS) security has evolved rapidly producing an impressive number of WS-based security standards. This fact has caused that organizations are still reticent about adopting technologies based on this paradigm due to the learning curve necessary to integrate security into their practical deployments. In this paper, we present PWSSec (process for Web services security) as a process that enables the integration of a set of specific stages into the traditional phases of WS-based systems development providing them with security. PWSSec is composed of three stages, WSSecReq (Web services security requirements), WSSecArch (Web services security architecture) and WSSecTech (Web services security technologies) that allow the specification of WS-specific security requirements, the definition of the WS-based security architecture and the identification of the security standards that the security architecture must deploy, respectively
Keywords :
Web services; security of data; Web services security; security requirement specification; security standards; Concrete; Security; Service oriented architecture; Web and internet services; Web services;
Conference_Titel :
Web Services, 2006. ICWS '06. International Conference on
Conference_Location :
Chicago, IL
Print_ISBN :
0-7695-2669-1
DOI :
10.1109/ICWS.2006.107
