Title :
Fine-Grain, End-to-End Security for Web Service Compositions
Author :
Singaravelu, Lenin ; Pu, Calton
Author_Institution :
Georgia Inst. of Technol., Atlanta
Abstract :
Web service composition introduces two research challenges to end-to-end integrity and confidentiality of information flow. First, component services need the ability to selectively read or modify information flows. Second, component web services may or may not be trusted by all participants in the same degree. Existing specifications such as WS-security provide fine-grained signatures and encryption for pair-wise interactions, but insufficient support for end-to-end security properties in open environments. Using an electronic prescription application, we illustrate the need for an enhanced framework for providing end-to-end security properties. We then describe a fine-grained, security framework, called WS-FESec, that leverages WS-security to support flexible preservation of end-to-end integrity and confidentiality in web service compositions. Finally, we discuss WS-FESec´s support for the lattice model of secure information flow and show how it can be employed to preserve end-to-end security properties in the electronic prescriptions application.
Keywords :
Web services; cryptography; data integrity; digital signatures; formal specification; Web service composition; data confidentiality; data integrity; data security; digital signature; electronic prescription application; encryption; formal specification; lattice model; secure information flow; Aggregates; Control systems; Cryptography; Data security; Distributed computing; Educational institutions; Information security; Lattices; Web and internet services; Web services;
Conference_Titel :
Services Computing, 2007. SCC 2007. IEEE International Conference on
Conference_Location :
Salt Lake City, UT
Print_ISBN :
0-7695-2925-9
DOI :
10.1109/SCC.2007.61
