2008 IEEE International Conference on Services Computing Vol. 1 (2008)
July 7, 2008 to July 11, 2008
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SCC.2008.121
Current web service platforms (WSPs) often perform all web services-related processing, including security-sensitive information handling, in the same protection domain. Consequently, the entire WSP may have access to security-sensitive information such as credit card numbers, forcing us to trust a large and complex piece of software. To address this problem, we propose ISO-WSP, a new information flow architecture that decomposes current WSPs into two parts executing in separate protection domains: (1) a small trusted T-WSP to handle security-sensitive data, and (2) a large, legacy untrusted U-WSP that provides the normal WSP functionality, but uses the T-WSP for security-sensitive data handling. By restricting security-sensitive data access to T-WSP, ISO-WSP reduces the software complexity of trusted code, thereby improving the testability of ISO-WSP. Using a prototype implementation based on the Apache Axis2 WSP, we show that ISO-WSP reduces software complexity of trusted components by a factor of five, while incurring a modest performance overhead of few milliseconds per request.
J. Wei, L. Singaravelu and C. Pu, "A Secure Information Flow Architecture for Web Services," 2008 IEEE International Conference on Services Computing(SCC), vol. 01, no. , pp. 182-189, 2008.