An operational model and language support for securing web services

Gwan Hwan Hwang, Yu Hsuan Change, Tao Ku Change

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

In this paper, we propose an operational model to support the security of Web services. In addition to satisfying the basic security requirements, including authentication, confidentiality, data integrity, and nonrepudiation, the proposed model supports security mechanisms such as element-wise encryption and temporal-based element-wise digital signatures. Furthermore, the proposed model supports a flexible key specification scheme called explicit key definition, which can be used to define three different types of keys: static keys, dynamically selected keys, and keys applied to digital signatures. The service requester can determine the identity of the keys used without negotiating with the service provider. The implementation and experimental results demonstrate the feasibility of the proposed system.

Original languageEnglish
Title of host publicationProceedings - 2007 IEEE International Conference on Web Services, ICWS 2007
Pages463-470
Number of pages8
DOIs
Publication statusPublished - 2007 Dec 1
Event2007 IEEE International Conference on Web Services, ICWS 2007 - Salt Lake City, UT, United States
Duration: 2007 Jul 92007 Jul 13

Publication series

NameProceedings - 2007 IEEE International Conference on Web Services, ICWS 2007

Other

Other2007 IEEE International Conference on Web Services, ICWS 2007
CountryUnited States
CitySalt Lake City, UT
Period07/7/907/7/13

Fingerprint

Web services
Electronic document identification systems
Authentication
Cryptography
Specifications
Language
Digital signature
Service provider
Encryption
Negotiating
Confidentiality
Non-repudiation
Data integrity

Keywords

  • DSL
  • SOAP
  • Security
  • WSDL
  • Web services
  • XML

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Information Systems
  • Information Systems and Management
  • Electrical and Electronic Engineering

Cite this

Hwang, G. H., Change, Y. H., & Change, T. K. (2007). An operational model and language support for securing web services. In Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007 (pp. 463-470). [4279632] (Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007). https://doi.org/10.1109/ICWS.2007.40

An operational model and language support for securing web services. / Hwang, Gwan Hwan; Change, Yu Hsuan; Change, Tao Ku.

Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007. 2007. p. 463-470 4279632 (Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Hwang, GH, Change, YH & Change, TK 2007, An operational model and language support for securing web services. in Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007., 4279632, Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007, pp. 463-470, 2007 IEEE International Conference on Web Services, ICWS 2007, Salt Lake City, UT, United States, 07/7/9. https://doi.org/10.1109/ICWS.2007.40
Hwang GH, Change YH, Change TK. An operational model and language support for securing web services. In Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007. 2007. p. 463-470. 4279632. (Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007). https://doi.org/10.1109/ICWS.2007.40
Hwang, Gwan Hwan ; Change, Yu Hsuan ; Change, Tao Ku. / An operational model and language support for securing web services. Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007. 2007. pp. 463-470 (Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007).
@inproceedings{d1bc8e91257749fda5b1c9fedaecf96d,
title = "An operational model and language support for securing web services",
abstract = "In this paper, we propose an operational model to support the security of Web services. In addition to satisfying the basic security requirements, including authentication, confidentiality, data integrity, and nonrepudiation, the proposed model supports security mechanisms such as element-wise encryption and temporal-based element-wise digital signatures. Furthermore, the proposed model supports a flexible key specification scheme called explicit key definition, which can be used to define three different types of keys: static keys, dynamically selected keys, and keys applied to digital signatures. The service requester can determine the identity of the keys used without negotiating with the service provider. The implementation and experimental results demonstrate the feasibility of the proposed system.",
keywords = "DSL, SOAP, Security, WSDL, Web services, XML",
author = "Hwang, {Gwan Hwan} and Change, {Yu Hsuan} and Change, {Tao Ku}",
year = "2007",
month = "12",
day = "1",
doi = "10.1109/ICWS.2007.40",
language = "English",
isbn = "0769529240",
series = "Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007",
pages = "463--470",
booktitle = "Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007",

}

TY - GEN

T1 - An operational model and language support for securing web services

AU - Hwang, Gwan Hwan

AU - Change, Yu Hsuan

AU - Change, Tao Ku

PY - 2007/12/1

Y1 - 2007/12/1

N2 - In this paper, we propose an operational model to support the security of Web services. In addition to satisfying the basic security requirements, including authentication, confidentiality, data integrity, and nonrepudiation, the proposed model supports security mechanisms such as element-wise encryption and temporal-based element-wise digital signatures. Furthermore, the proposed model supports a flexible key specification scheme called explicit key definition, which can be used to define three different types of keys: static keys, dynamically selected keys, and keys applied to digital signatures. The service requester can determine the identity of the keys used without negotiating with the service provider. The implementation and experimental results demonstrate the feasibility of the proposed system.

AB - In this paper, we propose an operational model to support the security of Web services. In addition to satisfying the basic security requirements, including authentication, confidentiality, data integrity, and nonrepudiation, the proposed model supports security mechanisms such as element-wise encryption and temporal-based element-wise digital signatures. Furthermore, the proposed model supports a flexible key specification scheme called explicit key definition, which can be used to define three different types of keys: static keys, dynamically selected keys, and keys applied to digital signatures. The service requester can determine the identity of the keys used without negotiating with the service provider. The implementation and experimental results demonstrate the feasibility of the proposed system.

KW - DSL

KW - SOAP

KW - Security

KW - WSDL

KW - Web services

KW - XML

UR - http://www.scopus.com/inward/record.url?scp=46849091790&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=46849091790&partnerID=8YFLogxK

U2 - 10.1109/ICWS.2007.40

DO - 10.1109/ICWS.2007.40

M3 - Conference contribution

AN - SCOPUS:46849091790

SN - 0769529240

SN - 9780769529240

T3 - Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007

SP - 463

EP - 470

BT - Proceedings - 2007 IEEE International Conference on Web Services, ICWS 2007

ER -