This paper presents Secure Enhanced Web Session providing an advanced protection of the Web sessions required in the Workflow environments. SEWebSession provides mandatory access control to the session state since the proposed policy is outside the scope of the Workflow developers and participants. Our MAC approach authorises various confidentiality and integrity properties for the session state. SEWebSession controls a session state whether it is maintained in the memory of the Web server, a dedicated server or a SQL Database. The protection rules can be reused from one platform to another one. SEWebSession has been successfully integrated within an industrial Workflow environment running on Windows platforms. The experimentations show the efficiency of SEWebSession for protecting Microsoft Windows/IIS platforms. However, SEWebSession can be easily ported within Linux/ Apache platforms. © 2013 Springer-Verlag Berlin Heidelberg.
CITATION STYLE
Fonda, M., Moinard, S., & Toinard, C. (2013). Advanced protection of workflow sessions with SEWebSession. In Lecture Notes in Business Information Processing (Vol. 132 LNBIP, pp. 713–718). Springer Verlag. https://doi.org/10.1007/978-3-642-36285-9_71
Mendeley helps you to discover research relevant for your work.