Title :
Trusted Service Discovery through Identity Management
Author :
Fongen, Anders ; Bloebaum, Trude Hafsoe
Author_Institution :
Norwegian Defence Res. Establ. (FFI), Kjeller, Norway
Abstract :
Service oriented environments face threats from unauthorized clients and fake or compromised services. The threats exist both during service discovery and service invocation, and should be mitigated through the same security framework. Through the use of a modern identity management system which offers a combination of key attestation and attributes for access control, more threats can be appropriately addressed. The combination of discovery and identity management results in a more comprehensive threat mitigation, scalable maintenance of security related information and easier federations of security domains. The architecture and protocols of this system combination are presented and discussed.
Keywords :
authorisation; protocols; service-oriented architecture; access control; comprehensive threat mitigation; compromised services; identity management system; key attestation; protocols; scalable maintenance; security domains; security related information; service invocation; service oriented environments; trusted service discovery; unauthorized clients; Access control; Authentication; Communities; Protocols; Public key; Servers; Authentication; Identity management; Integrity; Service Discovery;
Conference_Titel :
Military Communications Conference, MILCOM 2013 - 2013 IEEE
Conference_Location :
San Diego, CA
DOI :
10.1109/MILCOM.2013.315
