Title :
Information assurance challenges and strategies for securing SOA environments and web services
Author :
Simanta, Soumya ; Morris, Ed ; Balasubramaniam, Sriram ; Davenport, Jeff ; Smith, Dennis B.
Author_Institution :
Software Eng. Inst., Carnegie Mellon Univ., Pittsburgh, PA
Abstract :
The potential benefits of business agility, flexibility, and reuse associated with SOA are well known today. However, these benefits do not come without a cost of their own, particularly regarding security. The primary goal to make Web services widely accessible can also make them vulnerable. This paper examines the key challenges for securing service-oriented environments and identifies the important information assurance strategies that are necessary to mitigate and manage the security risks in an SOA environment.
Keywords :
Web services; security of data; software architecture; SOA environments; Web services; business agility; business flexibility; business reuse; information assurance challenges; security risks; service-oriented environments; Communication system security; Costs; Environmental management; Information security; Quality of service; Service oriented architecture; Software engineering; Testing; USA Councils; Web services; SOA; SOA Security Challenges; SOA Security Engineering; SOA Threat Model; Security; Service-oriented Architecture; Service-oriented Computing; Testing; Web Services;
Conference_Titel :
Systems Conference, 2009 3rd Annual IEEE
Conference_Location :
Vancouver, BC
Print_ISBN :
978-1-4244-3462-6
Electronic_ISBN :
978-1-4244-3463-3
DOI :
10.1109/SYSTEMS.2009.4815791
