Abstract
In this paper we propose an integrated XML web service security solution based on Java. The goal of the proposed solution is guaranteeing confidentiality, integrity, and non-repudiation in using web services. It provides flexibility as its security functions are implemented in security handlers instead of modifying web services engine. It also supports extensibility since it has been developed based on international standards such as WS-Security, XKMS, XML Encryption, and XML Signature specifications. The proposed solution provides clients and servers in the business to business environments with confidence and security.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
A Delphi Group, Web Services 2002: Market Milestone Report. A Delphi Group White Paper. IBM (2002)
Holbrook, S.: Web Services Architecture: Technical Overview of the Pieces. IBM (2002)
Wagner, R.: Web Services Security: New Dog, Old Tricks. In: Gartner Symposium ITXPO (2002)
W3C Note, SOAP: Simple Object Access Protocol 1.1 (May 2000)
W3C Recommendation, Canonical XML Version 1.0 (March 2001)
W3C Recommendation, XML Encryption Syntax and Processing (March 2002)
W3C Proposed Recommendation, XML Signature Syntax and Processing (August 2001)
W3C Note, XML Key Management Specification (XKMS) (March 2001)
Atkinson, B., Hada, S., Hallam-Baker, P., et al.: Web Services Security (WSSecurity) (April 2002)
VeriSign, Using VeriSign’s Trust Services Integration Kit with XKMS, VeriSign Inc. (March 2002)
VeriSign, VeriSign Digital Trust Services: Enabling Trusted Web Services (February 2002)
A Joint White Paper from IBM Corp. and Microsoft Corp., Security in a Web Services World: A Proposed Architecture and Roadmap (April 2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Lee, SM., Kwon, OS., Lee, JH., Oh, CJ., Ko, SH. (2003). TY*SecureWS: An Integrated Web Service Security Solution Based on Java. In: Bauknecht, K., Tjoa, A.M., Quirchmayr, G. (eds) E-Commerce and Web Technologies. EC-Web 2003. Lecture Notes in Computer Science, vol 2738. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-45229-4_19
Download citation
DOI: https://doi.org/10.1007/978-3-540-45229-4_19
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-40808-6
Online ISBN: 978-3-540-45229-4
eBook Packages: Springer Book Archive