New XACML-AspectBPEL approach for composite web services security
- Post by: eargadmin
- 27 June 2021
- Comments off
Abstract
Web services technology is the latest evolution in distributed
computing. With all of the advantages of web services, one of the main hurdles
remains security in composite web services. In this paper, we tackle this
problem through a new approach towards the integration of security into the
BPEL (Business Process Execution Language) process of composite web
services. Our approach allows specifying the XACML (eXtensible Access
Control Markup Language) policies that determine join points in a BPEL
process where security is needed. Subsequently, BPEL flows with the needed
security are generated into AspectBPEL security aspects to be weaved in the
aforementioned process. The main contributions of our approach are:
(a) describing dynamic security policies using a standard language XACML,
(b) generating automatically the AspectBPEL aspects of the XACML policies
and (c) separating the business and security concerns of composite web
services, hence developing and updating them separately at the BPEL side.