QoSS Policies within SOA
Authors: 
Hany F. El Yamany, Miriam A. M. Capretz, David S. Allison, Diego Garcia, M. Beatriz F. ToledoAuthors Info & Claims
Pages 426 - 429
Abstract
In this work, we present a metadata for Quality of Security Service (QoSS) for Service-Oriented Architecture, which supports the description of authentication, authorization and privacy features. The metadata is encapsulated by a QoSS service in order to assist the service consumer and provider to achieve a QoSS contract meeting both of their security requirements. This contract performs as an enforced policy for managing the interactions between the parties.
References
[1]
Dirk Krafizg, Karl Banke, and Dirk Slama, Enterprise SOA - Service Oriented Architecture Best Practices, Pearson Education, Inc., USA, 2005.
[2]
Ramarao Kanneganti and Prased Chodavarapu, SOA Security, Manning Publications Co., January 2008.
[3]
Hany F. EL Yamany, Miriam A. M. Capretz, "Use of Data Mining to Enhance Security for SOA", in the proceedings of the Third IEEE International Conference on Convergence and hybrid Information Technology (ICCIT'08), Busan, Korea, November 2008, Vol. 1, pp. 551-558.
[4]
Hany F. EL Yamany, Miriam A. M. Capretz, "An Authorization Model for Web Services within SOA", in the proceedings of the Third IEEE International Conference on Digital Management (ICDIM'08), London, UK, November 2008, pp. 75-80.
[5]
David S. Allison, Hany F. EL Yamany, and M. A. M. Capretz, "A Fine-Grained Privacy Structure for Service-Oriented Architecture", to appear in the Proc. of the 33rd IEEE International Computer Software and Applications Conference (COMPSAC'09), Seattle, USA, July 2009.
[6]
Alimiddin Mohamed, Alice Chen, Guijun Wang, Changzhou Wang, and Rodolfo Santiago, "A Multi-Layer Security Enabled Quality of Service (QoS) Management Architecture", in the proceeding of the 11th IEEE International Enterprise Distributed Object Computing Conference (EDOC'07), Maryland, USA, October 2007, pp. 423-434.
[7]
Guijun Wang, Alice Chen, Changzhou Wang, Casey Fung, and Stephen Uczekaj, "Integrated Quality of Service (QoS) Management in Service-Oriented Enterprise Architectures", in the proceedings of the 8th IEEE Intl Enterprise Distributed Object Computing Conference (EDOC'04), California, USA, September 2004, pp. 21-32.
[8]
Changzhou Wang, Guijun Wang, Alice Chen, Haiqin Wang, Yichi Pierce, Casey Fung, and Stephen Uczekaj, "A Policy-Based Approach for QoS Specification and Enforcement in Distributed Service-Oriented Architecture", in the proceedings of the 5th IEEE International Conference on Services Computing (SCC'05), Florida, USA, July 2005, pp. 307-310.
[9]
Xabier Larrucea and Ruben Alonso, "ISOAS: Through an independent SOA Security specification", in the proceedings of the 7th IEEE International Conference on Composition-Based Software Systems (ICCBSS'08), Madrid, Spain, February 2008, pp. 92-100.
[10]
WS-SecurityPolicy 1.2, http://docs.oasis-open.org/wssx/ ws-securitypolicy/200702/ws-securitypolicy-1.2-specos. html. Last seen: July 2009.
[11]
Cynthia Irvine and Timothy Levin, "Quality of Security Service", in the proceedings of 2000 workshop on New security paradigms, ACM press, New York, USA, 2001, pp. 91-99.
[12]
Zheng Y. Xia and Yun A. Hu, "Extending RSVP for Quality of Security Service", IEEE Internet Computing, 2006, Vol. 10, No. 2, pp. 51-57.
[13]
Jianyong Chen, Xiaomin Wang, Liwen He, "An Architecture for Differentiated Security Service", in the proceedings of IEEE International Symposium on Electronic Commerce and Security (ISECS'09), China, August 2008, pp. 301-304.
Recommendations
Quality of Security Service for Web Services within SOA
SERVICES '09: Proceedings of the 2009 Congress on Services - IService-Oriented Architecture (SOA) is a paradigm for creating and encapsulating business processes in the form of loose-coupling, autonomous and abstracted services. Managing the non-functional requirements of SOA such as security, is an overarching ...
Service-oriented architecture (SOA)concepts and implementations
SIGAda '11: Proceedings of the 2011 ACM annual international conference on Special interest group on the ada programming languageThis tutorial explains how to implement a Service-Oriented Architecture (SOA) for reliable systems using Enterprise Service Bus (ESB) technologies. The first half of the tutorial describes terms of Service-Oriented Architectures (SOA) including service, ...
Consumer-centric non-functional properties of SOA-based services
PESOS 2014: Proceedings of the 6th International Workshop on Principles of Engineering Service-Oriented and Cloud SystemsAn effective SOA service development approach requires the identification, specification, implementation, aggregation, management and monitoring of service-related Non-Functional Properties (NFPs). However, commonly nowadays, NFPs are often not handled ...
Comments
Please enable JavaScript to view thecomments powered by Disqus.Information & Contributors
Information
Published In
September 2009
726 pages
ISBN:9780769538013
Sponsors
Publisher
IEEE Computer Society
United States
Publication History
Published: 15 September 2009
Check for updates
Author Tags
Qualifiers
- Article
Contributors
Other Metrics
Bibliometrics & Citations
Bibliometrics
Article Metrics
- 0Total Citations
- 95Total Downloads
- Downloads (Last 12 months)0
- Downloads (Last 6 weeks)0
Reflects downloads up to 01 Jan 2025
Other Metrics
Citations
View Options
Login options
Check if you have access through your login credentials or your institution to get full access on this article.
Sign in