• DocumentCode
    3160713
  • Title

    Information assurance challenges and strategies for securing SOA environments and web services

  • Author

    Simanta, Soumya ; Morris, Ed ; Balasubramaniam, Sriram ; Davenport, Jeff ; Smith, Dennis B.

  • Author_Institution
    Software Eng. Inst., Carnegie Mellon Univ., Pittsburgh, PA
  • fYear
    2009
  • fDate
    23-26 March 2009
  • Firstpage
    173
  • Lastpage
    178
  • Abstract
    The potential benefits of business agility, flexibility, and reuse associated with SOA are well known today. However, these benefits do not come without a cost of their own, particularly regarding security. The primary goal to make Web services widely accessible can also make them vulnerable. This paper examines the key challenges for securing service-oriented environments and identifies the important information assurance strategies that are necessary to mitigate and manage the security risks in an SOA environment.
  • Keywords
    Web services; security of data; software architecture; SOA environments; Web services; business agility; business flexibility; business reuse; information assurance challenges; security risks; service-oriented environments; Communication system security; Costs; Environmental management; Information security; Quality of service; Service oriented architecture; Software engineering; Testing; USA Councils; Web services; SOA; SOA Security Challenges; SOA Security Engineering; SOA Threat Model; Security; Service-oriented Architecture; Service-oriented Computing; Testing; Web Services;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Systems Conference, 2009 3rd Annual IEEE
  • Conference_Location
    Vancouver, BC
  • Print_ISBN
    978-1-4244-3462-6
  • Electronic_ISBN
    978-1-4244-3463-3
  • Type

    conf

  • DOI
    10.1109/SYSTEMS.2009.4815791
  • Filename
    4815791