• DocumentCode
    3184049
  • Title

    Improving attribute based access control model for web services

  • Author

    Sabbari, Mehdi ; Alipour, Hadiseh Seyyed

  • Author_Institution
    Sama Tech. & Vocatinal Training Coll., Islamic Azad Univ., Borujerd, Iran
  • fYear
    2011
  • fDate
    11-14 Dec. 2011
  • Firstpage
    1223
  • Lastpage
    1228
  • Abstract
    Distributed systems such as SOA are typically heterogeneous systems that are opened to a wide variety of partners, customers,clients and resources, which introduce a new security threats. The organizations must protect their information assets from attacks. Their information assets would be accessed typically through services, which come in different technologies. Therefore in order to obtain security in the access control,suitable approaches must be designed. Since the most important way in implementing SOA is the use of web services, in this article we proposed an architecture for web services in access control to protected services and to adopt some policies on the applications based on ABAC model and SAML standard and XACML languages. The possible activity in the architecture and the implementation stages are explained using use case diagram and sequence diagram in UML.
  • Keywords
    Unified Modeling Language; Web services; authorisation; distributed processing; service-oriented architecture; ABAC model; SAML standard; SOA; UML; Web services; XACML language; attribute based access control; distributed system; information asset; security threat; sequence diagram; use case diagram; Access control; Authentication; Context; Service oriented architecture; XML; ABAC; Access Control; SAML; Web Services; XACML;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Information and Communication Technologies (WICT), 2011 World Congress on
  • Conference_Location
    Mumbai
  • Print_ISBN
    978-1-4673-0127-5
  • Type

    conf

  • DOI
    10.1109/WICT.2011.6141423
  • Filename
    6141423