Enabling Security Requirements for Enterprise Service-Oriented Architecture

By Hamed TaherdoostInformation Security
Enabling Security Requirements for Enterprise Service-Oriented Architecture

Abstract

In today?s Web environment, service-oriented architecture (SOA) becomes as an efficient paradigm to integrate distributed applications. Due to loosely coupled nature of SOA, security is one of the most important items that must be considered in SOA -based environments. Therefore, providing a comprehensive framework to support security in Enterprise SOA (ESOA) recently becomes a critical issue. In this paper logical deployment architecture for ESOA is proposed and then security requirements for the proposed architecture are analyzed. To provide capabilities to meet these requirements, a conceptual security framework which is consists of two approaches namely IBM SOA Security Reference Model and Security Framework for SOA, is presented. Finally, a case stud y is demonstrated and implemented to show that proposed framework can be applicable for any ESOA.

Authors:- Alaeddin Kalantari, M Khezrian, A Esmaeili, Hamed Taherdoost

Keywords:- Service-Oriented Architecture, Enterprise SOA, Logical Security Framework, Logical Deployment Architecture

Full Text