Using Aspects for Security Engineering of Web Service Compositions

I
ICWS
2005
IEEE International Conference on Web Services (ICWS'05)
Abstract - Using Aspects for Security Engineering of Web Service Compositions

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Anis Charfi Articles by Mira Mezini

IEEE International Conference on Web Services (ICWS'05)

Orlando, Florida

July 11-July 15

ISBN: 0-7695-2409-5

	ASCII Text	x
	Anis Charfi, Mira Mezini, "Using Aspects for Security Engineering of Web Service Compositions," Web Services, IEEE International Conference on, pp. 59-66, IEEE International Conference on Web Services (ICWS'05), 2005.

	BibTex	x
	@article{ 10.1109/ICWS.2005.126, author = {Anis Charfi and Mira Mezini}, title = {Using Aspects for Security Engineering of Web Service Compositions}, journal ={Web Services, IEEE International Conference on}, volume = {0}, year = {2005}, isbn = {0-7695-2409-5}, pages = {59-66}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICWS.2005.126}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Web Services, IEEE International Conference on TI - Using Aspects for Security Engineering of Web Service Compositions SN - 0-7695-2409-5 SP59 EP66 A1 - Anis Charfi, A1 - Mira Mezini, PY - 2005 VL - 0 JA - Web Services, IEEE International Conference on ER -

Anis Charfi, Darmstadt University of Technology

Mira Mezini, Darmstadt University of Technology

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICWS.2005.126

Web service composition languages promise a cheap and effective means for application integration over the Internet as in typical B2B interaction scenarios. BPEL is the upcoming standard for web service composition and several implementations of it are already available. However, for web service composition languages to keep their promises it is essential to provide more support for security. Companies will embrace web service composition languages only if their requirements of confidentiality, integrity, authentication, etc. are fulfilled. In this paper, we look at security in web services compositions and present a framework for securing BPEL compositions using WS-Security and WS-Policy. The main components of our framework are the process container implemented by a set of aspects in AO4BPEL, an aspectoriented extension to BPEL, the security service and the deployment descriptor. We also introduce the notion of policy-based process deployment to check the compatibility of the security policies of the composition and its partners at deployment time.

Citation:

Anis Charfi, Mira Mezini, "Using Aspects for Security Engineering of Web Service Compositions," icws, pp.59-66, IEEE International Conference on Web Services (ICWS'05), 2005

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.