An intelligent access control for Web services based on service oriented architecture platform

With the rapid development of Web applications and services, there have been security threats appearing on the Web based software systems. Web services are a new approach in providing efficient information and services using distributed computing. It is an important step towards service-oriented architecture (SOA). This paper describes the design of a reusable access control layer for Web services software. The layer is designed as an independent software component which is separated from the application components of Web applications and services. It applies expert system type of rules using an inference engine to determine security rules and access rights

[1]  Mustaque Ahamad,et al.  Generalized role-based access control , 2001, Proceedings 21st International Conference on Distributed Computing Systems.

[2]  Vijay Varadharajan,et al.  Authorization service for Web services and its implementation , 2004, Proceedings. IEEE International Conference on Web Services, 2004..

[3]  Ramaswamy Chandramouli A framework for multiple authorization types in a healthcare application system , 2001, Seventeenth Annual Computer Security Applications Conference.

[4]  Chokri Ben Amar,et al.  An authorization and access control model for workflow , 2004, First International Symposium on Control, Communications and Signal Processing, 2004..

[5]  Sérgio Shiguemi Furuie,et al.  A contextual role-based access control authorization model for electronic patient record , 2003, IEEE Transactions on Information Technology in Biomedicine.

[6]  Weider D. Yu A software fault prevention approach in coding and root cause analysis , 1998, Bell Labs Technical Journal.

[7]  Jim X. Chen,et al.  A model for team-based access control (TMAC 2004) , 2004, International Conference on Information Technology: Coding and Computing, 2004. Proceedings. ITCC 2004..

[8]  Ioannis Mavridis,et al.  Towards dynamically administered role-based access control , 2003, 14th International Workshop on Database and Expert Systems Applications, 2003. Proceedings..