To Support Customers in Easily and Affordably Obtaining Titles in Electronic Format IGI Global is Now Offering a 50% Discount on ALL E-Books and E-Journals Ordered Directly Through IGI Global’s Online Bookstore
Additionally, Enjoy a 20% Discount on all Other Products and FormatsBrowse Titles

Special Offers
- As Part of Our Efforts to Assist Customers with More Easily and Affordably
  Obtaining Titles in Electronic Format, IGI Global is Now Offering a 50% Discount on
  All E-Books and E-Journals Ordered Through IGI Global’s Online Bookstore*
  To support customers with accessing online resources, IGI Global is offering a 50% discount on all e-book and e-journals. This opportunity is ideal for librarian customers convert previously acquired print holdings to electronic format at a 50% discount.
  *The 50% discount is offered for all e-books and e-journals purchased on IGI Global’s Online Bookstore. E-books and e-journals are hosted on IGI Global’s InfoSci® platform and available for PDF and/or ePUB download on a perpetual or subscription basis. This discount cannot be combined with any other discount or promotional offer. Offer expires July 31, 2020.
  Browse Titles
  Convert Your IGI Global Print Holdings to Electronic Format through IGI Global’s
  InfoSci® Platform or ProQuest’s Ebook Central
  To assist our library customers, IGI Global will convert previously acquired print holdings to electronic formats directly through our InfoSci® platform or ProQuest’s E-Book Central. Send us a list of IGI Global publications you would like to convert, and we’ll promptly facilitate the set-up and access.
  Learn More
- View Over 200+ IGI Global Titles Related to Diversity and Inclusion
  IGI Global offers a rich volume of content related to diversity, inclusion, gender politics, corporate governance, LGBTQ+, civic engagement, and more. All of these titles are available in electronic format at a 50% discount making them ideal resources for online learning environments.
  View Titles
- Create a Free IGI Global Library Account to Receive an Additional 5% Discount on All Purchases
  Exclusive benefits include one-click shopping, flexible payment options, free COUNTER 5 reports and MARC records, and a 5% discount on single all titles, as well as the award-winning InfoSci^®-Databases.
  Sign Up Now!
Books
Journals
InfoSci^®-Databases
Articles/Chapters
Publish with Us
Resources
- - Instructors
  - Course Adoption
  - Teaching Cases
  - K-12 Online Learning Collection
  - Authors and Editors
  - eEditorial Discovery^® System
  - Peer Review Process
  - Ethics and Malpractice
  - COPE Membership
  - Fair Use Policy
  - Open Access Publishing
  - Editorial Services
  - FAQ
Catalogs
About Us
Newsroom

Security Policies in Web Services

Deepti Parachuri (Infosys Technologies Limited, India) and Sudeep Mallick (Infosys Technologies Limited, India)

Source Title: Web Services Security Development and Architecture: Theoretical and Practical Issues

DOI: 10.4018/978-1-60566-950-2.ch007

OnDemand PDF Download:

$30.00

List Price: $37.50

Abstract

Security is of fundamental concern in computing systems. This chapter covers the role of security policies in Web services. First, it examines the importance of policies in web services and explains the WS-Policy standard. It also highlights the relation of WS-Policy with other WS-* specifications. Next, it covers different facets of security requirements in SOA implementations. Later, it examines the importance of security policies in web services. It also presents the basic concepts of WS-Security policy language. WS-Security policy specification specifies a standard way to define and publish security requirements in an extensible and interoperable way. A service provider makes use of security policy to publish the security measures implemented to protect the service. Security policies can also be made customizable to meet the security preferences of different consumers. Towards the end, it discusses about the governance of security polices and also future trends in security policies for web services.

Chapter Preview

Top

2. Background On Policies In Web Services

Policies are defined as information which can be used to modify the behavior of a system. There are two reasons for using policies in Web services for developing interoperable business processes. Firstly, policies permit managing Web services at a higher level where details of composition are separated from the behavior of Web services. Secondly, policies help in creating interoperable and adaptive service systems. Policies also address issues like how to deal with Web service unreliability, and how to substitute a Web service with an equivalent one?

There are many ways to associate policies with Web services. A simple scenario for application of policy is “Consumer sends a service request to Provider. If the service request conforms to Provider’s policy for requests, then Provider accepts the request, else it returns a fault status.” This situation exists, for instance, where Provider requires Consumer to assign a unique identifier to its request, in accordance with WS-Reliability. If it receives a request with no suitable identifier, then it will return a fault status. Provider may publish its policy in one or more number of ways, UDDI, WSDL, HTTP, LDAP, DNS or in SQL or SAML request/response messages. Policies can also be included in SOAP headers.

Complete Chapter List

Search this Book:

Reset

MLA

APA

Chicago

Export Reference

Security Policies in Web Services

Abstract

2. Background On Policies In Web Services

Complete Chapter List