Welcome to the InfoSci Platform
Identification of Vulnerabilities in Web Services using Model-Based Security

Identification of Vulnerabilities in Web Services using Model-Based Security

Sebastian Höhn, Lutz Lowis, Jan Jürjens, Rafael Accorsi
Copyright: © 2010 |Pages: 32
ISBN13: 9781615209675|ISBN10: 1615209670|EISBN13: 9781615209682
DOI: 10.4018/978-1-61520-967-5.ch041
Cite Chapter Cite Chapter

MLA

Höhn, Sebastian, et al. "Identification of Vulnerabilities in Web Services using Model-Based Security." Electronic Services: Concepts, Methodologies, Tools and Applications, edited by Information Resources Management Association, IGI Global, 2010, pp. 673-704. https://doi.org/10.4018/978-1-61520-967-5.ch041

APA

Höhn, S., Lowis, L., Jürjens, J., & Accorsi, R. (2010). Identification of Vulnerabilities in Web Services using Model-Based Security. In I. Management Association (Ed.), Electronic Services: Concepts, Methodologies, Tools and Applications (pp. 673-704). IGI Global. https://doi.org/10.4018/978-1-61520-967-5.ch041

Chicago

Höhn, Sebastian, et al. "Identification of Vulnerabilities in Web Services using Model-Based Security." In Electronic Services: Concepts, Methodologies, Tools and Applications, edited by Information Resources Management Association, 673-704. Hershey, PA: IGI Global, 2010. https://doi.org/10.4018/978-1-61520-967-5.ch041

Export Reference

Mendeley
Favorite

Abstract

In a service-oriented architecture, business processes are executed as composition of services, which can suffer from vulnerabilities. These vulnerabilities in services and the underlying software applications put at risk computer systems in general and business processes in particular. Current vulnerability analysis approaches involve several manual tasks and, hence, are error-prone and costly. Service-oriented architectures impose additional analysis complexity as they provide much flexibility and frequent changes within orchestrated processes and services. Therefore, it is inevitable to provide tools and mechanisms that enable efficient and effective management of vulnerabilities within these complex systems. Model-based security engineering is a promising approach that can help to fill the gap between vulnerabilities on the one hand, and concrete protection mechanisms on the other. The authors present an approach that integrates model-based engineering and vulnerability analysis in order to cope with the security challenges of a service-oriented architecture.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.