论文信息 - A design of usable and secure access-control APIs for mashup applications

A design of usable and secure access-control APIs for mashup applications

Mashups, which are applications that are developed rapidly by combining multiple Web applications, are currently gathering much attention. One issue arising when creating mashups using data that is subject to access control is the difficulty in adding authentication and access control functions without losing the advantage of rapid development. We discuss the design and prototype implementation of an access control platform called SAXAE. SAXAE supports more secure and easy development of mashups. Its API enables both more secure and easier to use data protected by access control protocols.

Michio Shimomura | Ryota Hashimoto | Nachi Ueno

[1] Roy Fielding,et al. Architectural Styles and the Design of Network-based Software Architectures"; Doctoral dissertation , 2000 .

[2] Tyler Close,et al. Web-key: Mashing with Permission , 2008 .

[3] Scott R. Klemmer,et al. Hacking, Mashing, Gluing: Understanding Opportunistic Design , 2008, IEEE Pervasive Computing.

[4] Miroslaw Malek,et al. Current solutions for Web service composition , 2004, IEEE Internet Computing.

[5] Soon Ae Chun,et al. A citizen privacy protection model for e-government mashup services , 2008, DG.O.

[6] Michael Steiner,et al. SMash: secure component model for cross-domain mashups on unmodified browsers , 2008, WWW.

[7] Helen J. Wang,et al. Subspace: secure cross-domain communication for web mashups , 2007, WWW '07.

[8] Jason Hong,et al. What do we , 2008, WEUSE@ICSE.

[9] Eric. Newcomer,et al. Understanding SOA with Web Services , 2004 .