Get 1 Year of unlimited Apress for $199
Instant access to all available titles and new releases Apress Access Subscription

Security for Web Services and Service-Oriented Architectures

By Elisa Bertino , Lorenzo Martino , Federica Paci , Anna Squicciarini

  • eBook Price: $69.99
Buy eBook Buy Print Book

Security for Web Services and Service-Oriented Architectures Cover Image

Elisa Bertino and her coauthors provide a comprehensive guide to security for Web services and SOA. They cover all standards addressing Web service security, as well as recent research on access control and advanced digital identity management techniques.

Full Description

  • Add to Wishlist
  • ISBN13: 978-3-5408-7741-7
  • 240 Pages
  • User Level: Professionals
  • Publication Date: October 22, 2009
  • Available eBook Formats: PDF
Full Description
Web services based on the eXtensible Markup Language (XML), the Simple Object Access Protocol (SOAP), and related standards, and deployed in Service-Oriented Architectures (SOA), are the key to Web-based interoperability for applications within and across organizations. It is crucial that the security of services and their interactions with users is ensured if Web services technology is to live up to its promise. However, the very features that make it attractive – such as greater and ubiquitous access to data and other resources, dynamic application configuration and reconfiguration through workflows, and relative autonomy – conflict with conventional security models and mechanisms. Elisa Bertino and her coauthors provide a comprehensive guide to security for Web services and SOA. They cover in detail all recent standards that address Web service security, including XML Encryption, XML Signature, WS-Security, and WS-SecureConversation, as well as recent research on access control for simple and conversation-based Web services, advanced digital identity management techniques, and access control for Web-based workflows. They explain how these implement means for identification, authentication, and authorization with respect to security aspects such as integrity, confidentiality, and availability. This book will serve practitioners as a comprehensive critical reference on Web service standards, with illustrative examples and analyses of critical issues; researchers will use it as a state-of-the-art overview of ongoing research and innovative new directions; and graduate students will use it as a textbook on advanced topics in computer and system security.
Table of Contents

Table of Contents

  1. 1) Introduction
  2. 2) Web Service Technologies – Principles, Architectures and Standards
  3. 3) Web Services Threats, Vulnerabilities, and Countermeasures
  4. 4) Standards for Web Service Security
  5. 5) Digital Identity Management and Trust Negotiation
  6. 6) Access Control for Web Services
  7. 7) Secure Publishing Techniques
  8. 8) Access Control for Business Processes
  9. 9) Emerging Research Trends.

If you think that you've found an error in this book, please let us know by emailing to . You will find any confirmed erratum below, so you can check if your concern has already been addressed.
No errata are currently published


    1. PHP Objects, Patterns, and Practice


      View Book

    2. Beginning Android 3D Game Development


      View Book

    3. Troubleshooting Oracle Performance


      View Book

    4. Beginning Amazon Web Services with Node.js


      View Book