A distributed authentication model for composite Web services. Issue 70 (September 2017)
- Record Type:
- Journal Article
- Title:
- A distributed authentication model for composite Web services. Issue 70 (September 2017)
- Main Title:
- A distributed authentication model for composite Web services
- Authors:
- Nacer, Hassina
Djebari, Nabil
Slimani, Hachem
Aissani, Djamil - Abstract:
- Abstract: Proliferation of Web services based applications, collaboration and interoperability between companies, extremely heterogeneous policies of security, and, more generally, reply attacks over Internet are major challenges in the design of security infrastructures for Web services. In this paper, we focus our study on authentication of composite Web services. Authentication is certainly at the heart of any secure system. Thus, we propose a distributed model of authentication based on the circle of trust concept for composite Web services. This model has several functionalities: First, it ensures authentication for arbitrary composite Web services over Internet. Second, it can process across and beyond domain authentication boundaries. Third, it takes over the conflicts of security policies using the concept of Web Single Sign On (SSO) and client's profile using ontologies. Furthermore, the proposed model is scalable and dynamic because it is designed in a fully distributed manner, there are no central points and it evolves over time. An implementation of a prototype and a simulation design demonstrate that a strong security can be achieved for both the client and the composite Web service through the combination of a dynamic and collaborative trust model with a number of enhancements: ( i ) a combined encryption technique, ( ii ) a distributed authority of certificates, and ( iii ) semantic annotations.
- Is Part Of:
- Computers & security. Issue 70(2017)
- Journal:
- Computers & security
- Issue:
- Issue 70(2017)
- Issue Display:
- Volume 70, Issue 70 (2017)
- Year:
- 2017
- Volume:
- 70
- Issue:
- 70
- Issue Sort Value:
- 2017-0070-0070-0000
- Page Start:
- 144
- Page End:
- 178
- Publication Date:
- 2017-09
- Subjects:
- Security architecture -- Authentication -- Kerberos -- Web services composition -- Circle of trust
Computer security -- Periodicals
Electronic data processing departments -- Security measures -- Periodicals
005.805 - Journal URLs:
- http://www.sciencedirect.com/science/journal/01674048 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.cose.2017.05.008 ↗
- Languages:
- English
- ISSNs:
- 0167-4048
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 3394.781000
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 6986.xml