An extended UsernameToken-based approach for REST-style Web Service Security Authentication

Web service security is essential for SOA-based applications. Based on the analysis of the two existing authentications of REST-style Web services, Basic HTTP Authentication and HTTP Digest Authentication, we propose an extended UsernameToken-based approach for REST-style Web service. In this approa...

Celý popis

Uložené v:
Podrobná bibliografia
Vydané v:2009 2nd IEEE International Conference on Computer Science and Information Technology s. 582 - 586
Hlavní autori: Dunlu Peng, Chen Li, Huan Huo
Médium: Konferenčný príspevok..
Jazyk:English
Vydavateľské údaje: IEEE 01.08.2009
Predmet:
Authentication
Computer security
Costs
Information security
Optical computing
REST
Service oriented architecture
Software systems
UsernameToken
Web server
Web Service
Web services
WS-Security
XML
ISBN:1424445191, 9781424445196
On-line prístup:Získať plný text
Tagy: Pridať tag
Žiadne tagy, Buďte prvý, kto otaguje tento záznam!
Popis
Shrnutí:Web service security is essential for SOA-based applications. Based on the analysis of the two existing authentications of REST-style Web services, Basic HTTP Authentication and HTTP Digest Authentication, we propose an extended UsernameToken-based approach for REST-style Web service. In this approach, the WS-Security UsernameToken and secondary password are added into the HTTP header. By this way, the approach allows service providers to define their own authentication which makes up for the disadvantages of the current security aspect of REST-style Web services, especially when Basic HTTP Authentication and HTTP Digest Authentication are not applicable. Analysis shows that the approach implements the REST-style Web service security effectively.
ISBN:1424445191
9781424445196
DOI:10.1109/ICCSIT.2009.5234805