Dynamic cross-realm authentication for secure SOA-based business processes.

Xu, Jie, Zhang, Dacheng, Liu, Lu and Li, Xianxian (2010) Dynamic cross-realm authentication for secure SOA-based business processes. IEEE transactions on services computing, PP (99) . ISSN 1939-1374 [Article] (doi:10.1109/TSC.2010.33)

Abstract

Modern distributed business applications are embedding an increasing degree of automation and dynamism, from dynamic supply-chain management, enterprise federations, and virtual collaborations to dynamic service interactions across organizations. Such dynamism leads to new challenges in security and dependability. In Service-Oriented Architecture, collaborating services may belong to different security realms but often need to be engaged dynamically at runtime. If a cross-realm authentication relationship can not be generated dynamically at runtime between heterogeneous security realms, it is technically difficult to enable dynamic business processes through secure collaborations between services. A potential solution to this problem is to generate a trust relationship across security realms so that a user can use the credential in the local security realm to obtain the credentials to access resources in a remote realm. However, the process of generating such kinds of trust relationships between two disjoint security realms is very complex and time consuming, which could involve a large number of extra operations for credential conversion and require collaborations in multiple security realms. In this paper, we propose a new cross-realm authentication protocol for dynamic service interactions. This protocol does not require credential conversion or establishment of authentication paths.

Actions (login required)

View Item

Statistics

DownloadsShow export options

Export as CSVXMLJSON

Activity Overview

6 month trend

0Downloads

6 month trend

411Hits

Additional statistics are available via IRStats2.