An Access Control System for Web Service Compositions

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Mudhakar Srivatsa Articles by Arun Iyengar Articles by Thomas Mikalsen Articles by Isabelle Rouvellou Articles by Jian Yin

IEEE International Conference on Web Services (ICWS 2007)

Salt Lake City, Utah, USA

July 09-July 13

ISBN: 0-7695-2924-0

	ASCII Text	x
	Mudhakar Srivatsa, Arun Iyengar, Thomas Mikalsen, Isabelle Rouvellou, Jian Yin, "An Access Control System for Web Service Compositions," Web Services, IEEE International Conference on, pp. 1-8, IEEE International Conference on Web Services (ICWS 2007), 2007.

	BibTex	x
	@article{ 10.1109/ICWS.2007.31, author = {Mudhakar Srivatsa and Arun Iyengar and Thomas Mikalsen and Isabelle Rouvellou and Jian Yin}, title = {An Access Control System for Web Service Compositions}, journal ={Web Services, IEEE International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2924-0}, pages = {1-8}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICWS.2007.31}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Web Services, IEEE International Conference on TI - An Access Control System for Web Service Compositions SN - 0-7695-2924-0 SP1 EP8 A1 - Mudhakar Srivatsa, A1 - Arun Iyengar, A1 - Thomas Mikalsen, A1 - Isabelle Rouvellou, A1 - Jian Yin, PY - 2007 KW - null VL - 0 JA - Web Services, IEEE International Conference on ER -

Mudhakar Srivatsa, Georgia Institute of Technology, Atlanta, GA

Arun Iyengar, IBM T. J. Watson Research Center, Yorktown Heights, NY

Thomas Mikalsen, IBM T. J. Watson Research Center, Yorktown Heights, NY

Isabelle Rouvellou, IBM T. J. Watson Research Center, Yorktown Heights, NY

Jian Yin, IBM T. J. Watson Research Center, Yorktown Heights, NY

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICWS.2007.31

Service composition has emerged as a fundamental technique for developing Web applications. Multiple services, often from different organizations or trust domains, may be dynamically composed to satisfy a user's request. Access control in the presence of service compositions is a challenging security problem. In this paper, we present an access control model and techniques for specifying and enforcing access control rules on Web service compositions. A key advantage of our approach is that past histories of service invocations can be used to make access control decisions. Our approach allows role hierarchies and separation of duty constraints. Access controls rules may be parameterized by one or more arguments. We have implemented our access control model via a declarative policy specification language which uses pure-past linear temporal logic (PPLTL).We describe an implementation of our approach using a supply chain management (SCM) application. Our experiments show that our approach can enforce expressive and flexible access control policies while incurring reasonable performance overhead on the application.

Citation:

Mudhakar Srivatsa, Arun Iyengar, Thomas Mikalsen, Isabelle Rouvellou, Jian Yin, "An Access Control System for Web Service Compositions," icws, pp.1-8, IEEE International Conference on Web Services (ICWS 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.