Title :
Resource Classification Based Negotiation in Web Services
Author :
Haidar, Diala Abi ; Cuppens, Nora ; Cuppens, Frédéric ; Debar, Hervé
Author_Institution :
France Telecom RSD Caen, Caen
Abstract :
Trust establishment is necessary in every negotiation between entities from different security domains. It is seen as a first step before gaining access to protected resources. In this paper, we introduce a new classification methodology for protected resources. We use this classification to define the behavior of entities within a state based negotiation process. This process is enforced by two modules, the negotiation module and the exception treatment module. The first one intercepts all the requests for access. It collects credentials and exchanges policies according to the available negotiation policies. The second one is called by the first one whenever an exception is raised. An exception is a non negotiated denied access or locked negotiation.
Keywords :
Web services; authorisation; resource allocation; Web services; access control; protected resource classification based negotiation; Access control; Displays; Information security; Intrusion detection; Protection; Prototypes; Research and development; Telecommunications; Web services; XML; Access control; Interoperability; Negotiation; Trust;
Conference_Titel :
Information Assurance and Security, 2007. IAS 2007. Third International Symposium on
Conference_Location :
Manchester
Print_ISBN :
0-7695-2876-7
Electronic_ISBN :
978-0-7695-2876-2
DOI :
10.1109/IAS.2007.54
