Federated security: Lightweight security infrastructure for object repositories and Web services

Proceedings - International Conference on Next Generation Web Services Practices, NWeSP 2005

Volumn 2005, Issue , 2005, Pages 287-292

  Hatala, Marek ^a   Eap, Ty Mey ^a   Shah, Ashok ^a  

^a SIMON FRASER UNIVERSITY   (Canada)

Author keywords

[No Author keywords available]

Indexed keywords

DISTRIBUTED COMPUTER SYSTEMS; INFORMATION MANAGEMENT; LEARNING SYSTEMS; NETWORK PROTOCOLS; SPECIFICATIONS; WORLD WIDE WEB;

LIGHTWEIGHT SECURITY INFRASTRUCTURE; OBJECT REPOSITORIES; SECURITY SPECIFICATIONS; WEB SERVICES;

SECURITY OF DATA;

EID: 33847116694     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/NWESP.2005.41     Document Type: Conference Paper

References (13)

1. A. Nadalin, C. Kaler, P. Hallam-Baker and R. Monzillo., "OASIS Web Services Security: SOAP Message Security 1.0 (WS-Security 2004)," Tech. Rep. OASIS Standard 200401, March 2004.
2. G. Della-Libera, P. Hallam-Baker, M. Hondo, T. Janczuk, C. Kaler, H. Maruyama, N. Nagaratnam, A. Nash, R. Philpott, H. Prafullchandra, J. Shewchuk, E. Waingold and R. Zolfonoon, "Web services security policy language (WS-SecurityPolicy)," December 2002. [4] J.D. Guttman and A.L. Herzog, "Rigorous automated network security management," International Journal of Information Security, vol. 4, pp. 29-48, February 2005.
3. A.D. Gordon and R. Pucella, "Validating a Web service security abstraction by typing," in XMLSEC '02: Proceedings of the 2002 ACM workshop on XML security, 2002, pp. 18-29.
4. K. Bhargavan, C. Fournet and A.D. Gordon, "Verifying policy-based security for web services," in CCS '04: Proceedings of the 11th ACM conference on Computer and communications security, 2004, pp. 268-277.
5. D. Song, A. Perrig and D.E.-. Phan, AGVI - Automatic Generation, Verification, and Implementation of Security Protocols, 2001.
6. S. Lukell and A. Hutchison, "Automated Attack Analysis and Code Generation in a Multi-Dimensional Security Protocol Engineering Framework," in Proceedings Southern African Telecommunications Networks and Applications Conference 2003, 2003.
7. D. Pozza, R. Sisto and L. Durante, "Spi2Java: Automatic Cryptographic Protocol Java Code Generation from spi calculus," in AINA '04: Proceedings of the 18th International Conference on Advanced Information Networking and Applications Volume 2, 2004, pp. 400.
8. M. Tatsubori, T. Imamura and Y. Nakamura, "Best-Practice Patterns and Tool Support for Configuring Secure Web Services Messaging," in ICWS '04: Proceedings of the IEEE International Conference on Web Services (ICWS'04), 2004. pp. 244.
9. R.L. Morgan, S. Cantor, S. carmody, W. Hoehn and K. Klingenstein, "Federated Security: The Shibboleth Approach," Educause Quaterly, pp. 12-17, 2004.
10. J. Tourzan and Y. Koga, "Liberty ID-WSF Architecture Overview. Version 1.0," Liberty Alliance Project., 2004.
11. T. Scavo, "Shibboleth Architecture: Technical Overview," Working Draft 01, January 9, 2005, http://shibboleth.internets.edu/docs/draft- scavo-shib-techoverview-01.pdf.
12. M. Hatala, G. Richards, T. Eap and J. Willms, "The interoperability of learning object repositories and services: standards, implementations and lessons learned," in Proceedings of the 13th international World Wide Web conference, 2004, pp. 19-27.
13. S. Carmody, M. Erdos, K. Hazelton, W. Hoehn, B. Morgan, T. Scavo and D. Wasley, "InCommon Technical Requirements and Information," vol. 2005, pp. 5, May 5, 2005.