10% Discount on All E-Books through IGI Global’s Online Bookstore Extended(10% discount on all e-books cannot be combined with most offers. Discount is valid on purchases made directly through IGI Global Online Bookstore (www.igi-global.com)
and may not be utilized by booksellers and distributors. Offer does not apply to e-Collections and exclusions of select titles may apply. Offer expires June 30, 2022.)Browse Titles

Special Offers
- 10% Discount on All E-Books through IGI Global’s Online Bookstore
  With the continued paper shortages and supply chain issues, we have been informed by our partners that there will be substantial delays in printing and shipping publications, especially as we approach the holiday season. To help incentive the electronic format and streamline access to the latest research, we are offering a 10% discount on all our e-books through IGI Global’s Online Bookstore. Hosted on the InfoSci^® platform, these titles feature no DRM, no additional cost for multi-user licensing, no embargo of content, full-text PDF & HTML format, and more.
  Browse Titles
- IGI Global to Convert an Additional 30 Journals to Full Gold Open Access for the 2022 Volume Year
  IGI Global is to convert an additional 30 journals to full gold open access (OA) for their 2022 volume year, which will expand their OA collection to contain 60 gold open access and one (1) platinum open access journal.
  Learn More
- All IGI Global Scholarly Journals Shift to "Digital Preferred" Format
  In response to the overwhelming demand for electronic content coupled with the mission to decrease the overall environmental impacts of print production and distribution, all IGI Global journals will shift into a digital preferred model for the 2022 volume year. Under this model, journals will become primarily available under electronic format and articles will be immediately available upon acceptance. Print subscriptions and print + electronic subscriptions will still be available, but for the print version, all articles that are published during the volume year will become available at the end of the year in a single (1) printed volume.
  Learn More
- IGI Global’s New DEI e-Book Collection
  Acquire Over 320+ E-Books on Diversity, Equity, and Inclusivity from a publisher that has been dedicated to DEI since its inception over 30 years ago. Now, benefit from a collection of all of our DEI e-Books at a 90% Discount.
  Learn More
- Offering a 5% Pre-Publication Discount on
  All Reference Books Ordered Through IGI Global’s Online Bookstore*
  To support customers with accessing the latest research, IGI Global is offering a 5% pre-publication discount on all hardcover, softcover, e-books, and hardcover + e-books titles.
  *5% discount offer is eligible on hardcover, softcover, e-books, and hardcover + e-books titles and is automatically applied directly to the shopping cart. Discount offer only valid on purchases made directly through IGI Global’s Online Bookstore and offer expires 30 days after the publication’s release. This automatic discount is not intended for use by book distributors or wholesalers.
  Browse Titles
Books
Journals
e-Collections
- - e-Collections
  - Transformative Open Access (Read & Publish)
Open Access
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - K-12 Online Learning Collection
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - COPE Membership
  - Fair Use Policy
  - Open Access Publishing
  - Author Services
  - FAQ
Catalogs
About Us
Newsroom

Security Policies in Web Services

Deepti Parachuri (Infosys Technologies Limited, India) and Sudeep Mallick (Infosys Technologies Limited, India)

Source Title: Web Services Security Development and Architecture: Theoretical and Practical Issues

DOI: 10.4018/978-1-60566-950-2.ch007

OnDemand PDF Download:

Available

$37.50

Current Special Offers

No Current Special Offers

Abstract

Security is of fundamental concern in computing systems. This chapter covers the role of security policies in Web services. First, it examines the importance of policies in web services and explains the WS-Policy standard. It also highlights the relation of WS-Policy with other WS-* specifications. Next, it covers different facets of security requirements in SOA implementations. Later, it examines the importance of security policies in web services. It also presents the basic concepts of WS-Security policy language. WS-Security policy specification specifies a standard way to define and publish security requirements in an extensible and interoperable way. A service provider makes use of security policy to publish the security measures implemented to protect the service. Security policies can also be made customizable to meet the security preferences of different consumers. Towards the end, it discusses about the governance of security polices and also future trends in security policies for web services.

Chapter Preview

Top

2. Background On Policies In Web Services

Policies are defined as information which can be used to modify the behavior of a system. There are two reasons for using policies in Web services for developing interoperable business processes. Firstly, policies permit managing Web services at a higher level where details of composition are separated from the behavior of Web services. Secondly, policies help in creating interoperable and adaptive service systems. Policies also address issues like how to deal with Web service unreliability, and how to substitute a Web service with an equivalent one?

There are many ways to associate policies with Web services. A simple scenario for application of policy is “Consumer sends a service request to Provider. If the service request conforms to Provider’s policy for requests, then Provider accepts the request, else it returns a fault status.” This situation exists, for instance, where Provider requires Consumer to assign a unique identifier to its request, in accordance with WS-Reliability. If it receives a request with no suitable identifier, then it will return a fault status. Provider may publish its policy in one or more number of ways, UDDI, WSDL, HTTP, LDAP, DNS or in SQL or SAML request/response messages. Policies can also be included in SOAP headers.

Complete Chapter List

Search this Book:

Reset

MLA

APA

Chicago

Export Reference

Security Policies in Web Services

Abstract

2. Background On Policies In Web Services

Complete Chapter List