Web Services Security Assessment: An Authentication-Focused Approach - Information Security and Privacy Research
Conference Papers Year : 2012

Web Services Security Assessment: An Authentication-Focused Approach

Abstract

Web services may be able to publish easily their functions to the rest of the web world. At the same time they suffer by several security pitfalls. Currently, there is limited research on how the proposed web-services security countermeasures affect performance and applicability. In this paper, we introduce the threats/attacks vs. web-services authentication, present the most widely used security method for protecting it, and identify the threats/attacks tackled by those methods. Moreover, we evaluate the web service authentication mechanism proposed in these implementations, not only on a theoretical level (by taking into consideration all the security issues of the implementing authentication sub-mechanisms), but also in a laboratory environment (by conducting extensive experiments). Finally we demonstrate the trade-offs between sophisticated web-service security methods and their performance.
Fichier principal
Vignette du fichier
978-3-642-30436-1_49_Chapter.pdf (203.97 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01518251 , version 1 (04-05-2017)

Licence

Identifiers

Cite

Yannis Soupionis, Miltiadis Kandias. Web Services Security Assessment: An Authentication-Focused Approach. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Crete, Greece. pp.561-566, ⟨10.1007/978-3-642-30436-1_49⟩. ⟨hal-01518251⟩
250 View
104 Download

Altmetric

Share

More