|International Conference on Systems Engineering And Modeling
|Foundation of Computer Science USA
|ICSEM - Number 1
|Authors: R. Kishore Kumar, R. Kanchana, Chitra Babu
R. Kishore Kumar, R. Kanchana, Chitra Babu . Security for SOAP based Communication among Web Services. International Conference on Systems Engineering And Modeling. ICSEM, 1 (August 2013), 46-51.
Several companies and individuals are increasingly dependent on the electronic means to provide and consume services. A single service may not fulfil the requirement of a service consumer and hence, composition of web services which together satisfy the requirements is essential. In service provisioning, security attacks such as message alteration attack may happen at the service level or at the composition level. It is required to ensure secure data flow without information leaking through covert channels. Most of the existing works on web services security provide solutions for ensuring only confidentiality, client authorization, and integrity of information. Hence, it is proposed to design pluggable APIs that protect SOAP messages, from service based threats while accessing a service and during service composition. These APIs are generic in nature and can be installed on the server where the services are deployed. A generic API that protects the SOAP messages from message alteration attacks is proposed in this paper.