An extended UsernameToken-based approach for REST-style Web Service Security Authentication

Web service security is essential for SOA-based applications. Based on the analysis of the two existing authentications of REST-style Web services, Basic HTTP Authentication and HTTP Digest Authentication, we propose an extended UsernameToken-based approach for REST-style Web service. In this approa...

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:2009 2nd IEEE International Conference on Computer Science and Information Technology s. 582 - 586
Hlavní autoři: Dunlu Peng, Chen Li, Huan Huo
Médium: Konferenční příspěvek
Jazyk:angličtina
Vydáno: IEEE 01.08.2009
Témata:
Authentication
Computer security
Costs
Information security
Optical computing
REST
Service oriented architecture
Software systems
UsernameToken
Web server
Web Service
Web services
WS-Security
XML
ISBN:1424445191, 9781424445196
On-line přístup:Získat plný text
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:Web service security is essential for SOA-based applications. Based on the analysis of the two existing authentications of REST-style Web services, Basic HTTP Authentication and HTTP Digest Authentication, we propose an extended UsernameToken-based approach for REST-style Web service. In this approach, the WS-Security UsernameToken and secondary password are added into the HTTP header. By this way, the approach allows service providers to define their own authentication which makes up for the disadvantages of the current security aspect of REST-style Web services, especially when Basic HTTP Authentication and HTTP Digest Authentication are not applicable. Analysis shows that the approach implements the REST-style Web service security effectively.
ISBN:1424445191
9781424445196
DOI:10.1109/ICCSIT.2009.5234805