Title :
An Overview and Evaluation of Web Services Security Performance Optimizations
Author :
Van Engelen, Robert A. ; Zhang, Wei
Author_Institution :
Dept. of Comput. Sci., Florida State Univ., Tallahassee, FL
Abstract :
WS-Security is an essential component of the Web services protocol stack. WS-Security provides end-to-end security properties (integrity, confidentiality, and authentication) through open XML standards. End-to-end message security assures the participation of non-secure transport intermediaries in message exchanges, which is a key advantage for Web-based systems and service-oriented architectures. However, point-to-point message security based on TLS (transport layer security) is known to significantly outperform WS-Security. In this paper we analyze the overhead of the WS-Security protocol processing stages and evaluate existing and new techniques for WS-Security signature performance optimizations to speed up end-to-end message integrity assurance and authentication.
Keywords :
Web services; XML; optimisation; protocols; security of data; software architecture; WS-Security; Web services protocol stack; Web services security; Web-based systems; end-to-end message security; open XML standards; performance optimizations; service-oriented architectures; transport layer security; Authentication; Computer science; Computer security; Cryptography; Optimization; Service oriented architecture; Simple object access protocol; Transport protocols; Web services; XML; Evaluation; Performance Optimization; Web Services Security;
Conference_Titel :
Web Services, 2008. ICWS '08. IEEE International Conference on
Conference_Location :
Beijing
Print_ISBN :
978-0-7695-3310-0
Electronic_ISBN :
978-0-7695-3310-0
DOI :
10.1109/ICWS.2008.102