Previous [ 1] [ 2] [ 3] [ 4] [ 5] [ 6] [ 7] [ 8] [ 9] [ 10] [ 11] [ 12] [ 13] [ 14] [ 15] [ 16] [ 17] [ 18] [ 19]

@

Journal of Information Science and Engineering, Vol. 30 No. 6, pp. 1887-1903 (November 2014)


A Framework and Language Support for Dynamic Security Policy in Service-Oriented Architecture


CHI WU-LEE AND GWAN-HWAN HWANG*
Department of Computer Science and Information Engineering
National Taiwan Normal University
Taipei, 106 Taiwan

In todays global network-based environment, where mission-critical applications typically run on highly distributed systems, customers expect reliable, available, and secure services. Supporting security becomes an important issue in service-oriented architecture (SOA). This paper describes how to simultaneously support both dynamic security policies and separation of concerns when developing an SOA application. We propose the DPSL (dynamic policy specification language) for managing and controlling the security according to the dynamic behavior of the workflow in SOA. The operation model is compatible with existing SOA standards, such as the WSDL, WS-Policy, WS-Security- Policy, WS-ReliableMessaging, and the BPEL. As a result, existing standard Web-services engines and BPEL engines can be employed directly to support dynamic policies in SOA. The implementation and experimental results demonstrate the feasibility of the proposed architecture.

Keywords: SOA, web services, BPEL, workflow, security policy

Full Text () Retrieve PDF document (201411_12.pdf)

Received December 18, 2012; revised April 1 & May 6, 2013; accepted May 15, 2013.
Communicated by Jan-Jan Wu.
* Corresponding author: ghhwang@csie.ntnu.edu.tw.