Intelligent security and access control framework for service-oriented architecture

Yamany, Hany F. El; Capretz, Miriam A. M.; Allison, David S.

doi:10.1016/j.infsof.2009.10.005

Cited by 15 publications

(6 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The term 'sid' refers to the service's ID number. We assume that the security and privacy SSTM ratings are obtained from security and privacy rating systems (El Yamany et al, 2010;Allison et al, 2009;Anisetti et al, 2012) and, for simplicity, use a two-scale rating of either 1 or 10, i.e, T SSTMsec ¼ 1 or T SSTMsec ¼ 10.…”

Section: Methodsmentioning

confidence: 99%

Trust-based Service-Oriented Architecture

Aljazzaf

Capretz

Perry

2016

Journal of King Saud University - Computer and Information Scie

Self Cite

View full text Add to dashboard Cite

Service-Oriented Architecture (SOA) is an architectural style in building Web applications based on services. In SOA, the lack of trust between different parties affects the adoption of such architecture. Because trust is an important factor in successful online interactions, it is a major criterion for service selection. In the context of online services and SOA, the literature shows that the field of trust is not mature. The definitions of trust and its essential aspects do not reflect the true nature of trust online. This paper proposes a comprehensive trust-based SOA solution based on an identified trust definition and its principles for selecting services based on their trustworthiness. In particular, SOA is extended and a new component, the trust framework, which is responsible for the trust process, is added to the architecture. Consequently, its components are identified and built. The trust-based SOA is implemented through experiments and scenarios. Ó 2016 The Authors. Production and hosting by Elsevier B.V. on behalf of King Saud University. This is an open access article under the CC BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/).

show abstract

Section: Methodsmentioning

confidence: 99%

Trust-based Service-Oriented Architecture

Aljazzaf

Capretz

Perry

2016

Journal of King Saud University - Computer and Information Scie

Self Cite

View full text Add to dashboard Cite

show abstract

“…Akin to what we are proposing for cloud, Yamany et al [37] presented an intelligent service-oriented architecture security framework, which includes authentication and security service (NSS), as well as the authorization service (AS), based on the WS-* security standards. Similarly, Song et al [38] proposed a generic framework of dataprotection-as-service (DPaaS), which integrates various protection modules including access control, key management, and logging, to provide a combined multi-tier protection mechanisms for the current cloud.…”

Section: Security-as-a-service Solutions For Cloud Databasesmentioning

confidence: 99%

“…Similarly, Song et al [38] proposed a generic framework of dataprotection-as-service (DPaaS), which integrates various protection modules including access control, key management, and logging, to provide a combined multi-tier protection mechanisms for the current cloud. This, like [37], is just a concept that aims to provide integrity, privacy, confidentiality, and fine-grained access control in cloud. In particular, these methods do not target NoSQL databases.…”

Section: Security-as-a-service Solutions For Cloud Databasesmentioning

confidence: 99%

DB-SECaaS: a cloud-based protection system for document-oriented NoSQL databases

Ghazi

Masood

Rauf

et al. 2016

EURASIP J. on Info. Security

View full text Add to dashboard Cite

The trend of cloud databases is leaning towards Not Only SQL (NoSQL) databases as they provide better support for scalable storage and quick retrieval of exponentially voluminous data. One of the more prominent types of NoSQL databases is document-based storage, which is being increasingly used in the dynamic cloud paradigm. However, there are inherent security issues in cloud, including remote data residency along with the non-existent control of owners over their own data. In addition to that, the inherent security features of most document-based NoSQL databases lack granular access control and robust confidentiality mechanisms. There is also a distinct lack of a comprehensive solution that effectively caters to all the security requirements of a document-oriented database in cloud. In order to overcome these issues, we propose a database security-as-a-service (DB-SECaaS) system over document-oriented database hosted in cloud, which provides authentication, fine-grained authorization, and encryption of the database objects, while ensuring that access to the data is granted only to authorized users on a need-to-know basis. The paper shows that the DB-SECaaS system strongly enhances the security of documentoriented databases on cloud, and it is thus expected to facilitate the industry to reap the benefits of NoSQL without worrying over security issues. In order to certify the abovementioned security enhancements, provided by DB-SECaaS, the paper also provides a formal analysis of DB-SECaaS using the Scyther model checker. As a proof of concept, the core functionalities of the protocol, i.e., authorization, authentication, and encryption, are formally modeled in Scyther to formally verify that the proposed framework mitigates privacy and security concerns.

show abstract

“…Since WSN systems have similar security characteristics with the exisitng network-based software system like web-services, cloud computing, it is meaningful that the security specifications at each layer [7,21] in Service-oriented Architecture (SOA) is reviewed. The security specifications at each layer in SOA is represneted in Fig.…”

Section: Security Consideration For Each Step In Software Developmentmentioning

confidence: 99%

“…Cloud computing security should also be guided in this regard in order to become an effective and secure technology solution [6]. [7,21] permissions may be granted. Identification and authentication process are targeted at verifying and validating individual cloud users by implementing username and password protections to their cloud profiles.…”

Section: Security Attributes For Cloud Computing Systemmentioning

confidence: 99%

A priority for WSN in ubiquitous environment: multimedia security requirements

Jeong

2016

Multimed Tools Appl

View full text Add to dashboard Cite

With the rapid expansion of the human-centric ubiquitous environment, wireless sensor networks (WSN) will continue to be part of our everyday life and increase the amount and the type of data generated and transmitted by the WSN. As sensors become more essential in our daily life, the data from the sensors will become more private and need to be handled more sensitively. Therefore, the security of not only the data transmission between sensor nodes, but also the software system handling the data from sensor nodes will become more important. In this study, I concentrated on the security characteristics of the overall application systems in WSNs and derived the security attributes from the security requirements and standards of the existing network-based software systems. In the software development process, security must be considered throughout the whole process and, according to the applications the priority of each security attribute can be changed. I demonstrated the relative priority change in a web-based system and a WSN application system with an Analytic Hierarchy Process. The evaluation results showed that the difference of the relative priority of the security attributes in each sample system results not from the difference between the existing network-based system and the WSN but the type of the application. Therefore, the Multimedia security requirements and standards of the existing network-based software development process can be applied to the WSN application system through proper selection and modification.

show abstract

Intelligent security and access control framework for service-oriented architecture

Cited by 15 publications

References 16 publications

Trust-based Service-Oriented Architecture

Trust-based Service-Oriented Architecture

DB-SECaaS: a cloud-based protection system for document-oriented NoSQL databases

A priority for WSN in ubiquitous environment: multimedia security requirements

Contact Info

Product

Resources

About