By Topic

Towards the integration of Web services security on enterprise environments

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

3 Author(s)
Nakamur, Y. ; Tokyo Res. Lab., IBM Res., Kanagawa, Japan ; Hada, S. ; Neyama, R.

Web services are applications that can be accessed via widely accepted standards such as HTTP and XML. Since they are based on message exchanges on the Internet, there are always security risks as messages could be stolen, lost, or modified. Fortunately there are security standards such as SSL, and emerging standards such as XML digital signatures. With these technologies, safe information exchange among trading partners can be ensured. On the other hand, there exist security architectures within enterprise environments that are recipient of the incoming messages. Therefore, we must concern how the security information accompanying incoming messages should be processed there. In this paper, we review security information items coming with SOAP (Simple Object Accessing Protocol) messages, and discuss how each item can be processed by constructs in enterprise systems. In our analysis, we consider alternate mappings, and evaluate their advantages in terms of performance and manageability

Published in:

Applications and the Internet (SAINT) Workshops, 2002. Proceedings. 2002 Symposium on

Date of Conference: