An adaptable security framework for service-based systems

Proceedings - International Workshop on Object-Oriented Real-Time Dependable Systems, WORDS

Volumn , Issue , 2005, Pages 28-35

  Yau, Stephen S ^a   Yao, Yisheng ^a   Chen, Zhaoji ^a   Zhu, Luping ^a  

^a ARIZONA STATE UNIVERSITY   (United States)

Author keywords

Adaptability; Security agent; Security framework; Security policy; Service based systems; Situation awareness

Indexed keywords

ADAPTABILITY; LARGE-SCALE DISTRIBUTED SYSTEMS; SECURITY AGENT; SECURITY FRAMEWORK; SECURITY POLICY; SERVICE-BASED SYSTEMS; SITUATION-AWARENESS;

COMPUTER NETWORKS; COMPUTER PROGRAMMING LANGUAGES; DISTRIBUTED COMPUTER SYSTEMS; LARGE SCALE SYSTEMS; PUBLIC POLICY;

SECURITY OF DATA;

EID: 27544437710     PISSN: 15301443     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/WORDS.2005.15     Document Type: Conference Paper

References (25)

1. th Int'l Conf. on Web Info. Systems Engineering, 2003, pp.3-12.
2. IBM Web Services Architecture Team, "IBM Web Services architecture overview," http://www-106.ibm.com/developerworks/web/library/w-ovr/?dwzone= ibm, 2000.
3. D. Booth, H. Haas, and F McCabe, "Web Services Architecture," http://www.w3.org/TR/2004/, 2004.
4. Y. Nakamur, S.Hada and R. Neyama, "Towards the integration of Web services security on enterprise environments," Proc. Symp. on Applications and the Internet (SAINT) Workshops (2002), 2002, pp.166-175.
5. M. Naedele, "Standards for XML and Web services security," IEEE Computer, Vol.36(4), 2003, pp.96-98.
6. WS-Security, http://www-106.ibm.com/developerworks/webservices/library/ ws-secure/.
7. WS Security Policy, http://www-106.ibm.com/developer works/library/ws- secpol/
8. S. S. Yau, F. Karim, Y. Wang, B. Wang and S. K. S. Gupta, "Reconfigurable context-sensitive middleware for pervasive computing," IEEE Pervasive Computing, vol. 1(3), 2002, pp. 33-40.
9. th IEEE Workshop on Future Trends of Distributed Computing Systems, 2003, pp. 93-99.
10. th Int'l Computer Software and Applications Conf., 2002, pp. 233-238.
11. M. Blaze, et al., "The KeyNote Trust Management System (version 2)," RFC2704, 1999
12. nd Int'l Conf. of Financial Cryptography, 1998, pp. 254-274.
13. Y. Chu, et al., "REFEREE: Trust Management for Web Applications." World Wide Web Jour, vol 2(3), 1997, pp. 127-139.
14. rd DARPA Info. Survivability Conf. and Exposition, 2003, pp. 201-212.
15. OASIS, "Security Assertion Markup Language (SAML) Version 2.0," http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=security
16. OASIS, "extensible Access Control Markup Language (XACML) version 2.0," http://docs.oasis-open.org/xacml/access_control-xacml-2_0-core-spec- cd-04.pdf
17. R. Reiter, "A Logic for Default Reasoning," Artificial Intelligence, vol. 13, 1980, pp.81-132.
18. E. Bertino, P. A. Bonatti, E. Ferrari and M. L. Sapino, "Temporal Authorization Bases: From Specification to Integration," J. Computer Security, vol. 8(4), 2000, pp. 309-354.
19. S. Jajodia, Pamarati. S, M.L. Sapino, and V.S. Subrahmanian, "Flexible Supporting for Multiple Access Control Policies," ACM Trans. on Database Systems, vol. 26(2), 2001, pp.214-260.
20. F. Baader, D. Calvanese, D.L. McGuinness, D. Nardi and P.F. Patel-Schneider, editors, "The Description Logic Handbook," Cambridge University Press 2003
21. T. Y. C. Woo and S.S. Lam, "Designing a Distributed Authorization Service," Proc. IEEE INFOCOM '98, 1998. pp. 419-429.
22. M. Sloman and E. Lupu, "Security and management policy specification," IEEE Network, vol. 16(2), 2002, pp. 10-19.
23. th Int'l Workshop on Future Trends of Distributed Computing System (FTDCS 2003), 2003, pp. 233-240.
24. R. Bharadwaj, "SOL: A Verifiable Synchronous Language for Reactive Systems," Proc. Synchronous languages, Applications, and Programming (SLAP' 02). http://chacs.nrl.navy.mil/publications/CHACS/2002/2002 bharadwaj-entcs.pdf
25. M. Kifer, G. Lausen, and J. Wu, "Logic Foundations of Object-Oriented and Frame-Based Languages," J. ACM, vol. 42(4), 1995. pp. 741-843.