Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services

Abstract : Identity management (IdM) solutions in web services environments are often compared on the levels of performance and security they provide. Selecting the appropriate IdM solution for a given system or application often requires making tradeoffs between security and performance, while also considering the system's contextual and environmental requirements and constraints. This paper presents the results of a series of experiments targeted at analyzing the performance impact of adding WS-Security, a common security standard used in IdM frameworks, to SOAP-based web services. The goal of this work is to establish a baseline of performance data that can be used to explore performance/security tradeoffs in environments with complex attributes, such as resource or bandwidth limitations.

[1]  Phil Bianco Evaluating a Service-Oriented Architecture , 2007 .

[2]  Pu Liu,et al.  A Benchmark Suite for SOAP-based Communication in Grid Web Services , 2005, ACM/IEEE SC 2005 Conference (SC'05).

[3]  Matjaz B. Juric,et al.  Comparison of performance of Web services, WS-Security, RMI, and RMI-SSL , 2006, J. Syst. Softw..

[4]  Jordi Torres,et al.  Characterizing secure dynamic Web applications scalability , 2005, 19th IEEE International Parallel and Distributed Processing Symposium.

[5]  Zahir Tari,et al.  On the Performance of Web Services , 2011 .

[6]  Wei Zhang,et al.  Benchmarking XML Processors for Applications in Grid Web Services , 2006, ACM/IEEE SC 2006 Conference (SC'06).

[7]  John Zic,et al.  Performance Evaluation and Modeling of Web Services Security , 2007, IEEE International Conference on Web Services (ICWS 2007).

[8]  Paul Clements,et al.  Software architecture in practice , 1999, SEI series in software engineering.

[9]  M. Gaviano Limit of a Sequence , 1982 .

[10]  Shrideep Pallickara,et al.  Performance of Web Services Security , 2004 .