Research of Session Security Management in E-Commerce System

Author

Xu, Bing ; Xie, Shiyi

Author_Institution

Inf. Coll., Guangdong Ocean Univ., Zhanjiang, China

fYear

2009

fDate

16-17 May 2009

Firstpage

796

Lastpage

799

Abstract

In view of the limitation of the traditional security technique in Web service (WS) session domain, it researched the session security management model based on Web service and analyzed the security specifications of WS-Security and WS-Conversation proposed by IBM and Microsoft. In combination with a specific E-Commerce project, it discussed the design of session security model, analyzed the process of session security management and the definition of session message format, proposed a set of high-standard, high-security and loose-coupling solution for Web service session security management, which is successfully applied to an E-Commerce system, combining the practice with the theory perfectly.

Keywords

Web services; electronic commerce; security of data; E-Commerce system; IBM; Microsoft; WS-Conversation; WS-Security; Web service session domain; security specification; session message format; session security management; session security model; Companies; Data security; Electronic commerce; Engineering management; Information security; Project management; Service oriented architecture; Simple object access protocol; Web services; XML; E-commerce system; session management; session model; session security; web service;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Engineering and Electronic Commerce, 2009. IEEC '09. International Symposium on

Conference_Location

Ternopil

Print_ISBN

978-0-7695-3686-6

Type

conf

DOI

10.1109/IEEC.2009.173

Filename

5175231