New XACML-AspectBPEL approach for composite web services security
Web services technology is the latest evolution in distributed computing. With all of the advantages of web services, one of the main hurdles remains security in composite web services. In this paper, we tackle this problem through a new approach towards the integration of security into the BPEL (Bu...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | , , |
| Format: | article |
| Published: |
2013
|
| Online Access: | http://hdl.handle.net/10725/2678 http://dx.doi.org/10.1504/IJWGS.2013.054109 https://www.inderscienceonline.com/doi/abs/10.1504/IJWGS.2013.054109 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1864513459058638848 |
|---|---|
| author | Ayoubi, Sara |
| author2 | Mourad, Azzam Otrok, Hadi Shahin, Ahmad |
| author2_role | author author author |
| author_facet | Ayoubi, Sara Mourad, Azzam Otrok, Hadi Shahin, Ahmad |
| author_role | author |
| dc.creator.none.fl_str_mv | Ayoubi, Sara Mourad, Azzam Otrok, Hadi Shahin, Ahmad |
| dc.date.none.fl_str_mv | 2013 2015-11-24T13:37:37Z 2015-11-24T13:37:37Z 2015-11-24 |
| dc.identifier.none.fl_str_mv | 1741-1106 http://hdl.handle.net/10725/2678 http://dx.doi.org/10.1504/IJWGS.2013.054109 Ayoubi, S., Mourad, A., Otrok, H., & Shahin, A. (2013). New XACML-AspectBPEL approach for composite web services security. International Journal of Web and Grid Services, 9(2), 127-145. https://www.inderscienceonline.com/doi/abs/10.1504/IJWGS.2013.054109 |
| dc.language.none.fl_str_mv | en |
| dc.relation.none.fl_str_mv | International Journal of Web and Grid Services |
| dc.rights.*.fl_str_mv | info:eu-repo/semantics/openAccess |
| dc.title.none.fl_str_mv | New XACML-AspectBPEL approach for composite web services security |
| dc.type.none.fl_str_mv | Article info:eu-repo/semantics/publishedVersion info:eu-repo/semantics/article |
| description | Web services technology is the latest evolution in distributed computing. With all of the advantages of web services, one of the main hurdles remains security in composite web services. In this paper, we tackle this problem through a new approach towards the integration of security into the BPEL (Business Process Execution Language) process of composite web services. Our approach allows specifying the XACML (eXtensible Access Control Markup Language) policies that determine join points in a BPEL process where security is needed. Subsequently, BPEL flows with the needed security are generated into AspectBPEL security aspects to be weaved in the aforementioned process. The main contributions of our approach are: (a) describing dynamic security policies using a standard language XACML, (b) generating automatically the AspectBPEL aspects of the XACML policies and (c) separating the business and security concerns of composite web services, hence developing and updating them separately at the BPEL side. |
| eu_rights_str_mv | openAccess |
| format | article |
| id | LAURepo_f36c59dc598528ea53b07d0145249bc2 |
| identifier_str_mv | 1741-1106 Ayoubi, S., Mourad, A., Otrok, H., & Shahin, A. (2013). New XACML-AspectBPEL approach for composite web services security. International Journal of Web and Grid Services, 9(2), 127-145. |
| language_invalid_str_mv | en |
| network_acronym_str | LAURepo |
| network_name_str | Lebanese American University repository |
| oai_identifier_str | oai:laur.lau.edu.lb:10725/2678 |
| publishDate | 2013 |
| repository.mail.fl_str_mv | |
| repository.name.fl_str_mv | |
| repository_id_str | |
| spelling | New XACML-AspectBPEL approach for composite web services securityAyoubi, SaraMourad, AzzamOtrok, HadiShahin, AhmadWeb services technology is the latest evolution in distributed computing. With all of the advantages of web services, one of the main hurdles remains security in composite web services. In this paper, we tackle this problem through a new approach towards the integration of security into the BPEL (Business Process Execution Language) process of composite web services. Our approach allows specifying the XACML (eXtensible Access Control Markup Language) policies that determine join points in a BPEL process where security is needed. Subsequently, BPEL flows with the needed security are generated into AspectBPEL security aspects to be weaved in the aforementioned process. The main contributions of our approach are: (a) describing dynamic security policies using a standard language XACML, (b) generating automatically the AspectBPEL aspects of the XACML policies and (c) separating the business and security concerns of composite web services, hence developing and updating them separately at the BPEL side.PublishedN/A2015-11-24T13:37:37Z2015-11-24T13:37:37Z20132015-11-24Articleinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/article1741-1106http://hdl.handle.net/10725/2678http://dx.doi.org/10.1504/IJWGS.2013.054109Ayoubi, S., Mourad, A., Otrok, H., & Shahin, A. (2013). New XACML-AspectBPEL approach for composite web services security. International Journal of Web and Grid Services, 9(2), 127-145.https://www.inderscienceonline.com/doi/abs/10.1504/IJWGS.2013.054109enInternational Journal of Web and Grid Servicesinfo:eu-repo/semantics/openAccessoai:laur.lau.edu.lb:10725/26782021-03-23T17:17:05Z |
| spellingShingle | New XACML-AspectBPEL approach for composite web services security Ayoubi, Sara |
| status_str | publishedVersion |
| title | New XACML-AspectBPEL approach for composite web services security |
| title_full | New XACML-AspectBPEL approach for composite web services security |
| title_fullStr | New XACML-AspectBPEL approach for composite web services security |
| title_full_unstemmed | New XACML-AspectBPEL approach for composite web services security |
| title_short | New XACML-AspectBPEL approach for composite web services security |
| title_sort | New XACML-AspectBPEL approach for composite web services security |
| url | http://hdl.handle.net/10725/2678 http://dx.doi.org/10.1504/IJWGS.2013.054109 https://www.inderscienceonline.com/doi/abs/10.1504/IJWGS.2013.054109 |