Model driven security for Web services (MDS4WS)
Alam, M.M.
Breu, R.
Breu, M.
Institut fur Informatik, Innsbruck Univ., Austria;
This paper appears in: Multitopic Conference, 2004. Proceedings of INMIC 2004. 8th International
Publication Date: 24-26 Dec. 2004
On page(s): 498- 505
ISBN: 0-7803-8680-9
INSPEC Accession Number: 8572906
Digital Object Identifier: 10.1109/INMIC.2004.1492930
Current Version Published: 2005-08-15
Abstract
Model driven architecture is an approach to increase the quality of complex software systems based on creating high level system models that represent systems at different abstract levels and automatically generating system architectures from the models. We show how this paradigm can be applied to what we call model driven security for Web services. In our approach, a designer builds an interface model for the Web services along with security requirements using the object constraint language (OCL) and role based access control (RBAC) and then generates from these specifications a complete configured security infrastructure in the form of Extended Access Control Markup Language (XACML) policy files. Our approach can be used to improve productivity during the development of secure Web services and quality of resulting systems.
Index
Terms
Available to subscribers and IEEE members.
References
Available to subscribers and IEEE members.
Citing Documents
Available to subscribers and IEEE members.
Cart
