Performance Evaluation and Modeling of Web Services Security

While Web Services Security (WSS) enhances the security of web services, it may also introduce additional performance overheads to standard web services due to additional CPU processing and larger messages transferred. In this paper, we aim at clarifying this concern by conducting a quantitative performance evaluation of WSS overhead. Based on the evaluation, we extend our existing web services performance model by taking the extra WSS overheads into account. The extended performance model is validated on different environments with different messages sizes and WSS security policies.

[1]  Bo Yan,et al.  A Performance Evaluation of Web Services Security , 2006, 2006 10th IEEE International Enterprise Distributed Object Computing Conference (EDOC'06).

[2]  Hui Liu,et al.  Modeling response time of SOAP over Http , 2005, IEEE International Conference on Web Services (ICWS'05).

[3]  James M. Morand,et al.  A performance evaluation , 1980 .

[4]  Shrideep Pallickara,et al.  Performance of Web Services Security , 2004 .

[5]  Bo Yan,et al.  Evaluation and Modeling of Web Services Performance , 2006, 2006 IEEE International Conference on Web Services (ICWS'06).

[6]  Robert Steele,et al.  Evaluating SOAP for High Performance Business Applications: Real-Time Trading Systems , 2003, WWW.

[7]  Donald E. Eastlake,et al.  XML-Signature Syntax and Processing , 2001, RFC.

[8]  D. Eastlake,et al.  XML Encryption Syntax and Processing , 2003 .