Security system for distributed business applications

International Journal of Web Services Research

Volumn 2, Issue 1, 2005, Pages 77-88

  Schmidt, Thomas ^a   Wippel, Gerald ^a   Glanzer, Klaus ^a   Fürst, Karl ^a  

^a VIENNA UNIVERSITY OF TECHNOLOGY   (Austria)

Author keywords

Authentication; Authorization; Business to business; Enterprise integration; Extended enterprise; Internet application; SAML; Security; SOAP; Web services

Indexed keywords

COMPUTER SOFTWARE; FORMAL LANGUAGES; INFORMATION TECHNOLOGY; OPEN SYSTEMS; PROCESS CONTROL; SECURITY OF DATA;

AUTHENTICATION; AUTHORIZATION; BUSINESS-TO-BUSINESS; ENTERPRISE INTEGRATION; EXTENDED ENTERPRISE; INTERNET APPLICATION; SAML; SECURITY; SOAP; WEB SERVICES;

INTERNET;

EID: 11444267682     PISSN: 15457362     EISSN: 15465004     Source Type: Journal    
DOI: 10.4018/jwsr.2005010105     Document Type: Article

References (12)

1. Camarinha-Matos, L.M., & Afsarmanesh, M. (eds.). (1999). Infrastructures for virtual enterprises. Boston: Kluwer Academic Publishers.
2. Ferraiolo, D.F., Sandhu, R.S., Gavrila, S., Kuhn, D.R., & Chandramouli, R. (2001). Proposed NIST standard for role-based access control. ACM Transactions on Information and System Security, 4 (3), 224-274.
3. Goldman, S., Preiss, K., Nagel, R., & Dove, R. (1991). 21st century manufacturing enterprise strategy, Infrastructure. (Vol. 2). Bethlehem, PA: Iacocca Institute, Lehigh University.
4. ITU-T. (2000, March). ITU-T Recommendation X.509: Information technology. Open systems interconnection. The Directory: Public-key and attribute certificate frameworks. ITU: International Telecommunication Union.
5. Johnston, W., Mudumbai, S., & Thompson, M. (1998). Authorization and attribute certificates for widely distributed access control. In Seventh International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises.
6. SAML (Security Assertions Markup Language) 1.0. (2002, May 31). Committee Specification OASIS (Organization for Advancement of Structured Information Standards). Retrieved from www.oasis-open.org/committees/security/
7. Sandhu, R.S., & Coyne, E.J. (1999, February). Role-based access control models. IEEE Computer, 38-47.
8. Sandhu, R.S. (2000). Engineering authority and trust in Cyberspace: The om-am and rbac way. In Proceedings of the Fifth ACM Workshop on Role-Based Access Control (pp. 111-119).
9. Sayah, J., & Zhang, L.J. (2003, September 30). On-demand business collaboration enablement with Web services. IBM Research Report, No. RC22926 (W0309-191). IBM T.J. Watson Research Center.
10. WSS (Web Service Security) 0.9. (2002, January 26). Working Draft OASIS (Organization for Advancement of Structured Information Standards). Retrieved from www.oasis-open.org/com-mittees/wss/
11. XACML (extensible Access Control Markup Language) 1.0. (2003, September). Committee Specification OA-SIS (Organization for Advancement of Structured Information Standards). Retrieved from www.oasi-sopen.org/com-mittees/tc_home. php ?wg_abbrev=xacml
12. Zhang, L.J., & Jeckle, M. (2003). The next big thing: Web services collaboration. In Proceedings of the 2003 International Conference on Web Services Europe (ICWS-Europe03) (pp. 1-10). Spring-Bergle, LNCS 2853.