Title :
Attack-tolerant security model for WS-security
Author :
Jesudoss, A. ; Subramaniam, N.P.
Author_Institution :
Fac. of CSE, Sathyabama Univ., Chennai, India
Abstract :
WS-Security is an emerging standard for securing the web services. In this paper, we propose an attack-tolerant security model for WS-Security. This security model incorporates various features for WS-Security such as Time Stamp on SOAP message, parameter validation, etc. WS-Security has been implemented for online credit card transaction of a Web service. The various attacks on Web service and its countermeasures are discussed throughout this paper. The proposed security model has been designed with many essential design considerations. Hence, the proposed model makes the Web service an Attack-Tolerant Security Model.
Keywords :
Web services; security of data; SOAP message; WS-security; Web services; attack tolerant security model; online credit card transaction; parameter validation; security model; time stamp; Authentication; Encryption; Simple object access protocol; XML; Authentication; Confidentiality; Digital Signature; Integrity; Security Token; XML Encryption; XML Signature;
Conference_Titel :
Circuit, Power and Computing Technologies (ICCPCT), 2014 International Conference on
Print_ISBN :
978-1-4799-2395-3
DOI :
10.1109/ICCPCT.2014.7054907
