Web Services Security Assessment: An Authentication-Focused Approach - Information Security and Privacy Research Access content directly
Conference Papers Year : 2012

Web Services Security Assessment: An Authentication-Focused Approach

Abstract

Web services may be able to publish easily their functions to the rest of the web world. At the same time they suffer by several security pitfalls. Currently, there is limited research on how the proposed web-services security countermeasures affect performance and applicability. In this paper, we introduce the threats/attacks vs. web-services authentication, present the most widely used security method for protecting it, and identify the threats/attacks tackled by those methods. Moreover, we evaluate the web service authentication mechanism proposed in these implementations, not only on a theoretical level (by taking into consideration all the security issues of the implementing authentication sub-mechanisms), but also in a laboratory environment (by conducting extensive experiments). Finally we demonstrate the trade-offs between sophisticated web-service security methods and their performance.
Fichier principal
Vignette du fichier
978-3-642-30436-1_49_Chapter.pdf (203.97 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01518251 , version 1 (04-05-2017)

Licence

Attribution

Identifiers

Cite

Yannis Soupionis, Miltiadis Kandias. Web Services Security Assessment: An Authentication-Focused Approach. 27th Information Security and Privacy Conference (SEC), Jun 2012, Heraklion, Crete, Greece. pp.561-566, ⟨10.1007/978-3-642-30436-1_49⟩. ⟨hal-01518251⟩
225 View
85 Download

Altmetric

Share

Gmail Facebook X LinkedIn More