Welcome to the InfoSci Platform
Authorization Service for Web Services and its Application in a Health Care Domain

Authorization Service for Web Services and its Application in a Health Care Domain

Sarath Indrakanti, Vijay Varadharajan, Michael Hitchens
Copyright: © 2008 |Pages: 27
ISBN13: 9781599049373|ISBN10: 1599049376|EISBN13: 9781599049380
DOI: 10.4018/978-1-59904-937-3.ch191
Cite Chapter Cite Chapter

MLA

Indrakanti, Sarath, et al. "Authorization Service for Web Services and its Application in a Health Care Domain." Information Security and Ethics: Concepts, Methodologies, Tools, and Applications, edited by Hamid Nemati, IGI Global, 2008, pp. 2865-2891. https://doi.org/10.4018/978-1-59904-937-3.ch191

APA

Indrakanti, S., Varadharajan, V., & Hitchens, M. (2008). Authorization Service for Web Services and its Application in a Health Care Domain. In H. Nemati (Ed.), Information Security and Ethics: Concepts, Methodologies, Tools, and Applications (pp. 2865-2891). IGI Global. https://doi.org/10.4018/978-1-59904-937-3.ch191

Chicago

Indrakanti, Sarath, Vijay Varadharajan, and Michael Hitchens. "Authorization Service for Web Services and its Application in a Health Care Domain." In Information Security and Ethics: Concepts, Methodologies, Tools, and Applications, edited by Hamid Nemati, 2865-2891. Hershey, PA: IGI Global, 2008. https://doi.org/10.4018/978-1-59904-937-3.ch191

Export Reference

Mendeley
Favorite

Abstract

In this paper, we discuss the design issues for an authorization framework for Web Services. In particular, we describe the features required for an authorization policy language for Web Services. We briefly introduce the authorization service provided by Microsoft .NET MyServices and describe our extended authorization model that proposes extensions to the .NET MyServices authorization service to support a range of authorization policies required in commercial systems. We discuss the application of the extended authorization model to a health care system built using Web Services. We use the XML Access Control Language (XACL) in our implementation to demonstrate our extended authorization model. This also enables us to evaluate the range of authorization policies that XACL supports.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.