Abstract
Organisations increasingly engage in business collaborations with different partners in different locations. Such enterprises want to capitalise on and offer their existing internal capabilities as services to its customers. Service-oriented architectures let them do so. SOA by definition is loosely coupled, highly granular, and often widely distributed and multi-step. They can combine internal and external services. However, exposing sensitive services through an SOA gives rise to serious security concerns. In particular, it is important to rethink identity and access management. Neither aspect is a new IT management challenge but SOA amplifies them with scale and complexity. The management of user identities, their credentials and other attributes, as well as controlling their access to the business services need to be defined, managed, controlled, and enforced. Identity silos must be bridged.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
S. Braynov, M. Jadiwala, Representation and analysis of coordinated attacks, in Proceedings of the 2003 ACM Workshop on Formal Methods in Security Engineering (ACM, New York, 2003), pp. 43–51
D. Brossard, T. Dimitrakos, M. Colombo, Common Capabilities for Trust & Security in Service Oriented Infrastructures, eChallenges 2008
P. Deans, R. Wiseman, Service oriented infrastructure: technology and standards for integration. BT Technology Journal 26(1), 71–78 (2008)
P. Deans, R. Wiseman, Service-oriented infrastructure: proof of concept demonstrator. BT Technology Journal 26(2) (2009)
T. Dimitrakos, TrustCoM Scientific and Technological Roadmap. Restricted TrustCoM deliverable available upon request. Contact: theo.dimitrakos@bt.com
T. Dimitrakos, I. Djordjevic, A note on the anatomy of federation. BT Technology Journal 23(4), 89–106 (2005). Special Issue on Identity Management
T. Dimitrakos, P. Kearney, D. Golby, Towards a trust and contract management framework for dynamic virtual organisations, in eAdoption and the Knowledge Economy (IOS Press, Amsterdam, 2004)
T. Dimitrakos, D. Brossard, P. de Leusse, Securing business operations in an SOA. BT Technology Journal 26(2) (2009)
Distributed Access Control in a Service-Oriented Infrastructure, a BEinGRID Security Whitepaper, available from Gridipedia
I. Djordjevic, Use case/Requirements elicitation for BE09, Grid Trust Deliverable, British Telecom, December 2006
C. Geuer-Pollmann, How to make a federation manageable, in Proc. of Communications and Multimedia Security, 9th IFIP TC-6 TC-11 International Conference, CMS 2005, Salzburg, Austria, 19–21 Sept. 2005
Federation Management & Identity Brokerage in a Service-Oriented Infrastructure, a BEinGRID Security Whitepaper, available from Gridipedia
Managing, Contextualizing, & Exposing Enterprise Services: a service-oriented Governance Gateway, a BEinGRID Security Whitepaper, available from Gridipedia
OASIS, XACML 2.0 Core: eXtensible Access Control Markup Language (XACML) Version 2.0
OASIS, XACML 3.0 Administration and Delegation Profile, WD 19, 10 Oct. 2007: XACML v3.0 (DRAFT) Administration and Delegation Profile Version 1.0
OASIS, XACML 3.0 Core Specification (DRAFT), WD 6, 18 May 2008: eXtensible Access Control Markup Language (XACML) Version 3.0 (Core Specification and Schemas)
Securing the Service-Oriented Infrastructure: exposing web services with XML Security Gateways, a BEinGRID Security Whitepaper, available from Gridipedia
L. Titkov, D1.1.1—Requirements Analysis & Technology Evaluation for General Security and Trust
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Brossard, D., Dimitrakos, T., Gaeta, A., Mouton, S. (2010). Aspects of General Security & Trust. In: Dimitrakos, T., Martrat, J., Wesner, S. (eds) Service Oriented Infrastructures and Cloud Service Platforms for the Enterprise. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-04086-3_4
Download citation
DOI: https://doi.org/10.1007/978-3-642-04086-3_4
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-04085-6
Online ISBN: 978-3-642-04086-3
eBook Packages: Computer ScienceComputer Science (R0)