A single sign-on framework for web-services-based distributed applications

The basic specifications of Web services com- pletely ignore the need for secure services that are based on a solid authentication and authorization infrastructure. An enhancement of the basic specifications is in progress, but takes time to complete. A large-scale application built today is still in need of an authentication and authorization infrastructure to offer its services to the customers of the service provider and only to the customers. In the following such an infrastructure is described that is able to empower Web services to properly handle authentication and authorization. This infrastructure is designed as services that can be used by any Web service needing authentication and authorization.

[1]  Ge Zhang,et al.  A Web services based framework for voice over IP , 2004, Proceedings. 30th Euromicro Conference, 2004..

[2]  John Kemp,et al.  Liberty ID-WSF - a Web Services Framework , 2004 .

[3]  Ge Zhang,et al.  Implementing SIP and H.323 signalling as Web services , 2004, Proceedings. 30th Euromicro Conference, 2004..

[4]  Paul Müller,et al.  Facilitating the interoperability among different VoIP protocols with VoIP Web services , 2005, First International Conference on Distributed Frameworks for Multimedia Applications.

[5]  Paul Müller,et al.  Voice over IP als Web Service , 2004, DFN-Arbeitstagung über Kommunikationsnetze.

[6]  Jan De Clercq,et al.  Single Sign-On Architectures , 2002, InfraSec.

[7]  Siddharth Bajaj,et al.  Web Services Federation Language (WS- Federation) , 2003 .

[8]  Rolf Oppliger,et al.  Authentication systems for secure networks , 1996 .