Multi-Tier Security Feature Modeling for Service-Oriented Application Integration

  title={Multi-Tier Security Feature Modeling for Service-Oriented Application Integration},
  author={Fengyu Zhao and Xin Peng and Wenyun Zhao},
  journal={2009 Eighth IEEE/ACIS International Conference on Computer and Information Science},
In Service oriented architecture (SOA) environment, the communication and infrastructure security is crucial. The most important specification addressing web services security is WS-Security, which collaborates with the SOAP message specifications, providing integrity, confidentiality and authentication for web services. However, WS-Security focuses SOAP message security between trusted partners. In SOA applications, there are other vulnerabilities which can be exploited to attack by anonymous… CONTINUE READING