Logic-based Management of Security in Web Services

S
SCC
2007
IEEE International Conference on Services Computing (SCC 2007)
Abstract - Logic-based Management of Security in Web Services

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Christina Tziviskou Articles by Elisabetta Di Nitto

IEEE International Conference on Services Computing (SCC 2007)

Salt Lake City, Utah, USA

July 09-July 13

ISBN: 0-7695-2925-9

	ASCII Text	x
	Christina Tziviskou, Elisabetta Di Nitto, "Logic-based Management of Security in Web Services," Services Computing, IEEE International Conference on, pp. 228-235, IEEE International Conference on Services Computing (SCC 2007), 2007.

	BibTex	x
	@article{ 10.1109/SCC.2007.77, author = {Christina Tziviskou and Elisabetta Di Nitto}, title = {Logic-based Management of Security in Web Services}, journal ={Services Computing, IEEE International Conference on}, volume = {0}, year = {2007}, isbn = {0-7695-2925-9}, pages = {228-235}, doi = {http://doi.ieeecomputersociety.org/10.1109/SCC.2007.77}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Services Computing, IEEE International Conference on TI - Logic-based Management of Security in Web Services SN - 0-7695-2925-9 SP228 EP235 A1 - Christina Tziviskou, A1 - Elisabetta Di Nitto, PY - 2007 KW - null VL - 0 JA - Services Computing, IEEE International Conference on ER -

Christina Tziviskou, Politecnico di Milano, via Ponzio 34/5, Milano, Italy

Elisabetta Di Nitto, Politecnico di Milano, via Ponzio 34/5, Milano, Italy

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SCC.2007.77

The increasing use of the Web as the platform for delivering business processes arises the need to protect both sensitive data exchanged over the Internet and the applications using these data. In this context, authentication, integrity and confidentiality of exchanged messages are requested during interactions between processes, and are commonly called WS* specifications. In this paper, we propose a formal specification of the above security requirements and the corresponding assertions in the exchanged messages, built on the XSB logic programming language. Our framework analyzes the generated models and verifies that incoming messages fulfill the security requirements of a Web service. Furthermore, it verifies the compatibility between two policies, which is a significant condition in order to guarantee secure end-to-end SOAP invocations, and it is not currently supported by WS* specifications.

Citation:

Christina Tziviskou, Elisabetta Di Nitto, "Logic-based Management of Security in Web Services," scc, pp.228-235, IEEE International Conference on Services Computing (SCC 2007), 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.