DocumentCode
3160713
Title
Information assurance challenges and strategies for securing SOA environments and web services
Author
Simanta, Soumya ; Morris, Ed ; Balasubramaniam, Sriram ; Davenport, Jeff ; Smith, Dennis B.
Author_Institution
Software Eng. Inst., Carnegie Mellon Univ., Pittsburgh, PA
fYear
2009
fDate
23-26 March 2009
Firstpage
173
Lastpage
178
Abstract
The potential benefits of business agility, flexibility, and reuse associated with SOA are well known today. However, these benefits do not come without a cost of their own, particularly regarding security. The primary goal to make Web services widely accessible can also make them vulnerable. This paper examines the key challenges for securing service-oriented environments and identifies the important information assurance strategies that are necessary to mitigate and manage the security risks in an SOA environment.
Keywords
Web services; security of data; software architecture; SOA environments; Web services; business agility; business flexibility; business reuse; information assurance challenges; security risks; service-oriented environments; Communication system security; Costs; Environmental management; Information security; Quality of service; Service oriented architecture; Software engineering; Testing; USA Councils; Web services; SOA; SOA Security Challenges; SOA Security Engineering; SOA Threat Model; Security; Service-oriented Architecture; Service-oriented Computing; Testing; Web Services;
fLanguage
English
Publisher
ieee
Conference_Titel
Systems Conference, 2009 3rd Annual IEEE
Conference_Location
Vancouver, BC
Print_ISBN
978-1-4244-3462-6
Electronic_ISBN
978-1-4244-3463-3
Type
conf
DOI
10.1109/SYSTEMS.2009.4815791
Filename
4815791
Link To Document