Title :
Web Contents Protection, Secure Execution and Authorized Distribution
Author :
Abbasi, Abdul Ghafoor ; Muftic, Sead ; Hotamov, Ikrom
Author_Institution :
Sch. of Inf. Commun. & Technol., R. Inst. of Technol., Kista, Sweden
Abstract :
This paper describes the design and implementation of a comprehensive system for protection of Web contents. In this design, new security components and extended security features are introduced in order to protect Web contents ageist various Web attacks. Components and extended security features are: protection of Web pages using strong encryption techniques, encapsulation of Web contents and resources in PKCS#7, extended secure execution environment for Java Web Server, eXtensible Access Control Markup Language (XACML) based authorization policies, and secure Web proxy. Design and implementation of our system is based on the concepts of generic security objects and component-based architecture that makes it compatible with exiting Web infrastructures without any modification.
Keywords :
Internet; Java; authorisation; data encapsulation; object-oriented programming; software architecture; Java Web server; PKCS#7; Web attacks; Web contents encapsulation; Web contents protection; Web pages protection; Web proxy security; authorization policy; authorized distribution; component-based architecture; eXtensible Access Control Markup Language; encryption technique; execution security; generic security objects; security components; Authentication; Cryptography; Protocols; Web pages; Web server; PKCS#7; authorization; distribution of secure Web contents; encrypted Web pages; secure Web proxy;
Conference_Titel :
Computing in the Global Information Technology (ICCGI), 2010 Fifth International Multi-Conference on
Conference_Location :
Valencia
Print_ISBN :
978-1-4244-8068-5
Electronic_ISBN :
978-0-7695-4181-5
DOI :
10.1109/ICCGI.2010.46
