Title :
Logic-based Management of Security in Web Services
Author :
Tziviskou, Christina ; Di Nitto, Elisabetta
Author_Institution :
Politecnico di Milano, Milan
Abstract :
The increasing use of the web as the platform for delivering business processes arises the need to protect both sensitive data exchanged over the Internet and the applications using these data. In this context, authentication, integrity and confidentiality of exchanged messages are requested during interactions between processes, and are commonly called WS* specifications. In this paper, we propose a formal specification of the above security requirements and the corresponding assertions in the exchanged messages, built on the XSB logic programming language. Our framework analyzes the generated models and verifies that incoming messages fulfill the security requirements of a web service. Furthermore, it verifies the compatibility between two policies, which is a significant condition in order to guarantee secure end-to-end SOAP invocations, and it is not currently supported by WS* specifications.
Keywords :
Web services; data integrity; electronic data interchange; formal specification; formal verification; logic programming languages; message authentication; Internet; SOAP invocations; WS* specifications; Web services; XSB logic programming language; business processes; data exchanged; exchanged messages; formal specification; logic-based security management; message authentication; security requirements; Authentication; Data security; Formal specifications; Logic programming; Protection; Robustness; Semantic Web; Simple object access protocol; Web and internet services; Web services;
Conference_Titel :
Services Computing, 2007. SCC 2007. IEEE International Conference on
Conference_Location :
Salt Lake City, UT
Print_ISBN :
0-7695-2925-9
DOI :
10.1109/SCC.2007.77
