Web service invocation occurs over the Internet, which is a public network. This increases concern of the requester for adequate security of his private data. While using the web services, the security requirements of the user usually pertain to confi dentiality, integrity, authentication and non-repudiation for the input information that the user provides and the information received as output...

This paper presents a qualitative analysis of security aspect of Web-Based applications that utilize Service Oriented Architecture (SOA). The architectural solutions that address security requirements are examined and compared with other quality attributes relevant to web-based systems. More specifically, a trade off analysis based on ATAM performed to show the correlation between security and ...

A wide range of security services may be available to applications in a heterogeneous computer network environment. Resource Management Systems (RMSs) responsible for assigning computing and network resources to tasks need to know the resource-utilization costs associated with the various network security services. In order to understand the range of security services an RMS needs to manage, a ...

The vision of a landscape of heterogeneous web services deployed as encapsulated business software assets in the Internet is currently becoming a reality as part of the Semantic Web. When pro-active agents handle the context-aware discovery, acquisition, composition, and management of application services and data, ensuring the security of customers’ data becomes a principle task. To dynamicall...

An Input validation can be a critical issue. Typically, a little attention is paid to it in a web development project, because overenthusiastic validation can tend to cause failures in the software, and can also break the security upon web applications such as an unauthorized access to data. Now, it is estimated the web application vulnerabilities (such as XSS or SQL injection) for more than tw...

This thesis describes a system called the Transportation Security SensorNet that can be used to perform extensive cargo monitoring. It is built as a Service Oriented Architecture (SOA) using open web service specifications and Open Geospatial Consortium (OGC) standards. This allows for compatibility, interoperability and integration with other web services and Geographical Information Systems (...

Providing network security is one of the most important tasks in todays Internet. Unfortunately, many users are not able to protect themselves and their networks. Therefore, a novel security concept is presented to protect users by providing security measures at the Internet Service Provider level. Already now, Internet Service Providers are using different security measures, e.g., Virtual Loca...

Web-based services are vulnerable to a number of attacks. While providers of these services employ countermeasures (such as firewalls, encryption, and authentication systems) to reduce security risks, some of these security measures can be rendered useless if the PC of a user that accesses such a web-based service is not properly secured. Malicious software that is installed on a user’s PC, for...

Several companies and individuals are increasingly dependent on the electronic means to provide and consume services. A single service may not fulfil the requirement of a service consumer and hence, composition of web services which together satisfy the requirements is essential. In service provisioning, security attacks such as message alteration attack may happen at the service level or at th...