Title :
Improving attribute based access control model for web services
Author :
Sabbari, Mehdi ; Alipour, Hadiseh Seyyed
Author_Institution :
Sama Tech. & Vocatinal Training Coll., Islamic Azad Univ., Borujerd, Iran
Abstract :
Distributed systems such as SOA are typically heterogeneous systems that are opened to a wide variety of partners, customers,clients and resources, which introduce a new security threats. The organizations must protect their information assets from attacks. Their information assets would be accessed typically through services, which come in different technologies. Therefore in order to obtain security in the access control,suitable approaches must be designed. Since the most important way in implementing SOA is the use of web services, in this article we proposed an architecture for web services in access control to protected services and to adopt some policies on the applications based on ABAC model and SAML standard and XACML languages. The possible activity in the architecture and the implementation stages are explained using use case diagram and sequence diagram in UML.
Keywords :
Unified Modeling Language; Web services; authorisation; distributed processing; service-oriented architecture; ABAC model; SAML standard; SOA; UML; Web services; XACML language; attribute based access control; distributed system; information asset; security threat; sequence diagram; use case diagram; Access control; Authentication; Context; Service oriented architecture; XML; ABAC; Access Control; SAML; Web Services; XACML;
Conference_Titel :
Information and Communication Technologies (WICT), 2011 World Congress on
Conference_Location :
Mumbai
Print_ISBN :
978-1-4673-0127-5
DOI :
10.1109/WICT.2011.6141423
