Managing Security Policy in a Large Distributed Web Services Environment

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Symon Chang Articles by Qiming Chen Articles by Meichun Hsu

27th Annual International Computer Software and Applications Conference

Dallas, Texas

November 03-November 06

ISBN: 0-7695-2020-0

	ASCII Text	x
	Symon Chang, Qiming Chen, Meichun Hsu, "Managing Security Policy in a Large Distributed Web Services Environment," Computer Software and Applications Conference, Annual International, pp. 610, 27th Annual International Computer Software and Applications Conference, 2003.

	BibTex	x
	@article{ 10.1109/CMPSAC.2003.1245404, author = {Symon Chang and Qiming Chen and Meichun Hsu}, title = {Managing Security Policy in a Large Distributed Web Services Environment}, journal ={Computer Software and Applications Conference, Annual International}, volume = {0}, year = {2003}, isbn = {0-7695-2020-0}, pages = {610}, doi = {http://doi.ieeecomputersociety.org/10.1109/CMPSAC.2003.1245404}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Software and Applications Conference, Annual International TI - Managing Security Policy in a Large Distributed Web Services Environment SN - 0-7695-2020-0 SP EP A1 - Symon Chang, A1 - Qiming Chen, A1 - Meichun Hsu, PY - 2003 KW - null VL - 0 JA - Computer Software and Applications Conference, Annual International ER -

Symon Chang, Commerce One Inc.

Qiming Chen, Commerce One Inc.

Meichun Hsu, Commerce One Inc.

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/CMPSAC.2003.1245404

Effectively managing security policies in a large distributed Web Services environment is the key to secure e-business transactions. Security policy must ensure the end-to-end agreement for many-to-many interoperation; ensure the versioning interoperability and privacy of collaborating partners; and ensure the dynamic establishment of security policies because any statically defined security policy tends to be unsecured after a certain period of time. The traditional security policy configuration mechanisms, either the local configuration mechanism or the centralized configuration mechanism, cannot fully meet the above requirements.

In this paper we describe a solution for managing security policies in a collaborative Web Services environment. This solution is based on ebXML CPP/CPA model and uses Interoperability Contract Document (ICD). It allows the collaboration parties to establish security policy dynamically for each individual interoperation; makes the selected policy confidential; and addresses the software, message, and policy versioning and interoperability issues. Our experience reveals the advantages of this approach over others.

Citation:

Symon Chang, Qiming Chen, Meichun Hsu, "Managing Security Policy in a Large Distributed Web Services Environment," compsac, pp.610, 27th Annual International Computer Software and Applications Conference, 2003

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.