Privacy Protection for Role-based Access Control in Service Oriented Architecture
نویسندگان
چکیده
Service Oriented Architecture (SOA) changes the way of conducting business by opening their services to the larger business world over the networks. However, the “open” and “interoperable” properties of SOA make privacy a sensitive security issue. In SOA, service providers (SPs) limit permission of access to specific authorized Access Requestors (ARs). SPs need to verify ARs’ identity information, but ARs may not willing to disclose their privacy to unknown SPs in an open system. To solve this conflict in SOA environment, we propose privacy preserving protocols for role-based access control (RBAC) in the SOA environment. The security analysis demonstrates that our protocols are privacy protected. Moreover, the implementation of the proposed protocols are compatible with current SOA standards and technologies such as XACML and SOAP.
منابع مشابه
Attribute-based Access Control for Cloud-based Electronic Health Record (EHR) Systems
Electronic health record (EHR) system facilitates integrating patients' medical information and improves service productivity. However, user access to patient data in a privacy-preserving manner is still challenging problem. Many studies concerned with security and privacy in EHR systems. Rezaeibagha and Mu [1] have proposed a hybrid architecture for privacy-preserving accessing patient records...
متن کاملAn Architecture for Security and Protection of Big Data
The issue of online privacy and security is a challenging subject, as it concerns the privacy of data that are increasingly more accessible via the internet. In other words, people who intend to access the private information of other users can do so more efficiently over the internet. This study is an attempt to address the privacy issue of distributed big data in the context of cloud computin...
متن کاملA Service-oriented Identity Authentication Privacy Protection Method in Cloud Computing
Cloud computing provides elastic, scalable on-demand IT services for individuals and organizations. In the cloud computing, everything is as the service. Cloud clients enjoy convenience and efficiency service, but at the same time encounter new issues. Cloud clients needs to provide authentication information to access to service, which often contains a lot of sensitive information. The service...
متن کاملRequirements for privacy-enhancing Service-oriented architectures
Service-oriented architectures expose new chances and challenges for privacy and data protection. The potentially increased distribution of personal information across multiple domains make subject access requests difficult to handle. Which service did process what data? Whom to address for liability issues? At the same time, the service orientation offers a new approach for the granularity of ...
متن کاملENABLING ACCOUNTABLE ANONYMOUS USER COMMUNICATION IN WIRELESS MESH NETWORK P.Ramya
Wireless mesh networks (WMNs) have recently attracted increasing attention and deployment as a promising low-cost approach to provide last-mile high-speed Internet access at metropolitan scale. Security and privacy issues are of most concern in pushing the success of WMNs for their wide deployment and for supporting service-oriented applications. Due to the intrinsically open and distributed na...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
دوره شماره
صفحات -
تاریخ انتشار 2014