论文信息 - A fair Non-repudiation service in a web services peer-to-peer environment

A fair Non-repudiation service in a web services peer-to-peer environment

''Non-repudiation'', a well known concept in security engineering, provides measures to ensure that participants in a communication process cannot deny having participated. This concept is of eminent importance in business cases based on service oriented architectures (e.g. electronic billing). However, there is no sophisticated standard implementing fair Non-repudiation in such an environment. In this paper, we will introduce a framework providing fair Non-repudiation for Web service messages. It implements an arbitrary, pre-defined protocol using Web services technology, but completely hides the protocol execution from the target Web services. To allow the integration of security requirements in an early stage of the development cycle, a model-driven configuration approach is used. Furthermore, the procedure is not tied to Non-repudiation protocols only, which means that a broad range of protocols can be integrated in a similar way. The framework presented in this paper leverages existing standards and protocols for an efficient adoption in service oriented architectures.

Ruth Breu | Michael Hafner | Berthold Agreiter

[1] Michael Hanson,et al. Web Services Security: Non-Repudiation , 2003 .

[2] Mark Bartel,et al. Xml-Signature Syntax and Processing , 2000 .

[3] Allen Brown. SOAP Security Extensions: Digital Signature , 2001 .

[4] Olivier Markowitch,et al. A Multi-Party Non-Repudiation Protocol , 2000, SEC.

[5] Dieter Gollmann,et al. A fair non-repudiation protocol , 1996, Proceedings 1996 IEEE Symposium on Security and Privacy.

[6] Jean Jacques Moreau,et al. SOAP Version 1. 2 Part 1: Messaging Framework , 2003 .

[7] Alan O. Freier,et al. The SSL Protocol Version 3.0 , 1996 .

[8] Olivier Markowitch,et al. Probabilistic Non-Repudiation without Trusted Third Party , 1999 .

[9] Ruth Breu,et al. A Security Architecture for Inter-Organizational Workflows: Putting Security Standards for Web Services Together , 2005, ICEIS.

[10] Ruth Breu,et al. Sectet: an extensible framework for the realization of secure inter-organizational workflows , 2006, Internet Res..

[11] Serge Mankovskii,et al. Service Oriented Architecture , 2009, Encyclopedia of Database Systems.

[12] Jianying Zhou,et al. An intensive survey of fair non-repudiation protocols , 2002, Comput. Commun..

[13] Ruth Breu,et al. Towards a MOF/QVT-Based domain architecture for model driven security , 2006, MoDELS'06.