2010 International Conference on Availability, Reliability and Security 2010
DOI: 10.1109/ares.2010.117
|View full text |Cite
|
Sign up to set email alerts
|

Abstract: Abstract-The shift from mere service-oriented architectures (SOA) to semantically enriched approaches is especially being forced in multi-domain environments that the public sector in the European Union is an example for. The security aspect is lagging behind its possibilities, and new access control approaches native to the semantic environment need to be applied. Based on architectural research work conducted within the EU-funded research project Access-eGov, we outline our implementation of a semantic secur… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1

Citation Types

0
3
0
1

Year Published

2010
2010
2023
2023

Publication Types

Select...
4
1
1

Relationship

0
6

Authors

Journals

citations
Cited by 7 publications
(4 citation statements)
references
References 10 publications
0
3
0
1
Order By: Relevance
“…Most approaches in the area of Web service security have focused on providing mechanisms for ensuring that services act only on authorized requests as well as ensuring the confidentiality and the integrity of exchanged messages [10]. These works range from proposing new public-and private-key encryption mechanisms to protect exchanged SOAP messages [20], to proposing secure communication protocols and architectures [12]. We consider these works as complementary to our proposal as we focus on a different security aspect which is limiting the service's disclosed information based on the identities of services' consumers (i.e., the recipients), their purposes and the data queried at the service endpoint.…”
Section: Related Workmentioning
confidence: 99%
See 1 more Smart Citation
“…Most approaches in the area of Web service security have focused on providing mechanisms for ensuring that services act only on authorized requests as well as ensuring the confidentiality and the integrity of exchanged messages [10]. These works range from proposing new public-and private-key encryption mechanisms to protect exchanged SOAP messages [20], to proposing secure communication protocols and architectures [12]. We consider these works as complementary to our proposal as we focus on a different security aspect which is limiting the service's disclosed information based on the identities of services' consumers (i.e., the recipients), their purposes and the data queried at the service endpoint.…”
Section: Related Workmentioning
confidence: 99%
“…A considerable body of recent research works have been devoted to security and privacy in the area of Web services [10,12,20,18]. Their focus was on providing mechanisms for ensuring that services act only on the authorized requests and for ensuring SOAP message confidentiality and integrity.…”
Section: Introductionmentioning
confidence: 99%
“…A prototype implementation of the framework is presented in Ref. 17; similarly to ours, it is strongly inspired by the XACML framework 36 and uses the XACML and SAML 35 standards for the exchange of messages among parties. The framework employs ontologies to define the semantics of the terms used in policies; an ontology alignment technique enables parties to use different ontologies, guaranteeing both autonomy and interoperability.…”
Section: Related Workmentioning
confidence: 99%
“…2.3. Uma Arquitetura Semântica de Seguranc ¸a para servic ¸os Web A Semantic Security Architecture for Web Services [Dürbeck et al 2010] trata-se de uma soluc ¸ão proposta à necessidade dos órgãos públicos da União Européia ao compartilhar servic ¸os eletronicamente, através do portal eGov, sem comprometer o sigilo de dados confidenciais. Para isto, apresenta-se um mecanismo de controle de acesso baseado em um conjunto de WS, que formam uma arquitetura SOA, responsável por conceder ou negar solicitac ¸ões de acesso, ilustrada na Figura 3.…”
Section: Modelo De Controle De Acesso Para Sistemas Unidos Em Comérci...unclassified