Agent-Based Delegation Model for the Secure Web Service in Ubiquitous Computing Environments

Web services are the new building block of today's Internet, and provides interoperability among heterogeneous distributed systems. Recently in Web services environment, security has become one of the most critical issues. An attacker may expose user privacy and service information without authentication. Furthermore, in the ubiquitous computing environment, the users of Web services must temporarily delegate some or all of their rights to agents in order to perform actions on their behalf. This results in the exposure of user privacy information by agents. We propose a delegation model for providing safety of Web service and user privacy in ubiquitous computing environments. In order to provide safety of Web service and user privacy, XML-based encryption and a digital signature mechanism needs to be efficiently integrated. In this paper, we propose Web service management server based on XACML, in order to manage services and policies of Web service providers. For this purpose, we extend SAML, in order to declare delegation assertions transferred to Web service providers by delegation among agents

[1]  Xie Li,et al.  Role-based access control system for Web services , 2004, The Fourth International Conference onComputer and Information Technology, 2004. CIT '04..

[2]  Ernesto Damiani,et al.  XML-based access control languages , 2004, Inf. Secur. Tech. Rep..

[3]  Yuh-Jong Hu Some thoughts on agent trust and delegation , 2001, AGENTS '01.

[4]  Steven Tuecke,et al.  X.509 Proxy Certificates for Dynamic Delegation , 2004 .

[5]  D. Eastlake,et al.  XML Encryption Syntax and Processing , 2003 .

[6]  Robert Steele,et al.  UDDI access control , 2005, Third International Conference on Information Technology and Applications (ICITA'05).

[7]  Ravi S. Sandhu,et al.  Role-Based Access Control Models , 1996, Computer.

[8]  Birgit Pfitzmann,et al.  Analysis of Liberty Single-Sign-on with Enabled Clients , 2003, IEEE Internet Comput..

[9]  Birgit Pfitzmann,et al.  Token-based Web Single Signon with Enabled Clients , 2002 .

[10]  Vipin Samar Single sign-on using cookies for Web applications , 1999, Proceedings. IEEE 8th International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises (WET ICE'99).

[11]  Shigeru Hosono,et al.  A delegation framework for federated identity management , 2005, DIM '05.

[12]  Hong Fan,et al.  A context-aware role-based access control model for Web services , 2005, IEEE International Conference on e-Business Engineering (ICEBE'05).

[13]  Jun Wang,et al.  Extending the security assertion markup language to support delegation for Web services and grid services , 2005, IEEE International Conference on Web Services (ICWS'05).

[14]  Sergi Robles,et al.  Distributed Authorization Framework for Mobile Agents , 2005, MATA.