论文信息 - Extended BPEL with heterogeneous authentication mechanisms in service ecosystems

Extended BPEL with heterogeneous authentication mechanisms in service ecosystems

Service ecosystems provide distributed evolutionary capabilities allowing services to recombine and evolve in sustainable environments. Web services play a crucial role in service ecosystems since they support interoperable machine-to-machine interactions and help in developing new services from existing services by using a variety of composition languages. Business Process Execution Language (BPEL) has recently emerged as the de-facto standard for Web service composition. From the security perspective, Web service providers may require different authentication mechanisms to securely invoke their services. The integration of different authentication mechanisms complicates the global authentication scheme of BPEL-based processes and raises a challenge in adopting BPEL in service ecosystems. In this work, we propose the Security Service concept to define activity single sign-on (ASSO) for federated identify-based authentication. The Security Service allows the integration of heterogeneous authentication mechanisms in the context of multiple service providers. We also extend the <invoke> activity to ensure non-intrusive extension of BPEL language and implement the Security Service in a peer-to-peer network.

Youakim Badr | Kablan Barbar | Frédérique Biennier | Pascal Bou Nassar

[1] Mohsen Rouached,et al. Specification and Verification of Authorization Policies for Web Services Composition , 2007, CAiSE Forum.

[2] Craig Metz,et al. One-Time Passwords in Everything (OPIE): Experiences with Building and Using Strong Authentication , 1995, USENIX Security Symposium.

[3] T. A. Parker. Single sign-on systems-the technologies and the products , 1995 .

[4] Barbara Carminati,et al. Security Conscious Web Service Composition , 2006, 2006 IEEE International Conference on Web Services (ICWS'06).

[5] Francisco Curbera,et al. Web Services Business Process Execution Language Version 2.0 , 2007 .

[6] Gerard Briscoe,et al. Digital Ecosystems: Evolving Service-Orientated Architectures , 2006, 2006 1st Bio-Inspired Models of Network, Information and Computing Systems.

[7] Matjaz B. Juric,et al. Business process execution language for web services , 2004 .

[8] Matjaz B. Juric,et al. Business Process Execution Language for Web Services BPEL and BPEL4WS 2nd Edition , 2006 .

[9] Yannick Chevalier,et al. Automatic Composition of Services with Security Policies , 2008, 2008 IEEE Congress on Services - Part I.

[10] Hagen Overdick,et al. On the Suitability of WS-CDL for Choreography Modeling , 2006, EMISA.