In this paper, we give the design of a security model that encapsulates the basic modules needed for securing the access to a web service, which are authentication and authorization. Our model relies on WS-Security standards and another application layer technology, namely the "Lightweight Directory Access Protocol". We also implement and test the model, and provide several test case scenarios. Moreover, an evaluation in terms of performance is done in order to reduce the concerns about security bottleneck and overheads. Finally, we highlight some of our model's advantages and drawbacks. © 2011 Springer-Verlag.
CITATION STYLE
Challita, K., Farhat, H., & Zalaket, J. (2011). Authentication and authorization in web services. In Communications in Computer and Information Science (Vol. 136 CCIS, pp. 13–23). https://doi.org/10.1007/978-3-642-22185-9_2
Mendeley helps you to discover research relevant for your work.