ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Specifying conflict of interest in web services endpoint language (WSEL)
Full text PdfPdf (98 KB)
Source ACM SIGecom Exchanges archive
Volume 3 ,  Issue 3  (Summer, 2002) table of contents
Pages: 1 - 8  
Year of Publication: 2002
Author
Patrick C. K. Hung  CSIRO Mathematical and Information Sciences, GPO Box 664, Canberra, ACT 2601, Australia
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 1,   Downloads (12 Months): 57,   Citation Count: 2
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/844339.844344
What is a DOI?

ABSTRACT

A Web service is an autonomous unit of application logic that provides either some business functionalities or information to other applications through an Internet connection. A business process contains a set of activities, and service locators assign an appropriate Web service for each activity.Recently IBM proposed a new XML language called Web Services Endpoint Language (WSEL) for describing endpoint properties of Web services. Web services will be described through endpoint properties by the appropriate extensibility elements in WSEL in order to facilitate the processes of matchmaking and delegation.It is obvious that security issues are important endpoint properties at Web services.This paper extends the WSEL to specify the conflict of interest in the processes of matchmaking and delegation as one of the endpoint properties.In addition to this, this paper also introduces the concepts of separation of duties and security risk factor in the Web service assignments.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Lerina Aversano , Gerardo Canfora , Andrea De Lucia , Pierpaolo Gallucci, Integrating Document and Workflow Management Tools using XML and Web Technologies: A Case Study, Proceedings of the 6th European Conference on Software Maintenance and Reengineering, p.24, March 11-13, 2002
 
2
Alan Berfield , Panos K. Chrysanthis , Ioannis Tsamardinos , Sujata Banerjee , Martha E. Pollack, A Scheme for Integrating E-Services in Establishing Virtual Enterprises, Proceedings of the 12th International Workshop on Research Issues in Data Engineering: Engineering E-Commerce/E-Business Systems (RIDE'02), p.134, February 24-25, 2002
 
3
BIZTALK ORGANIZATION: www. biztalk. org.
 
4
HINKE, THOMAS H. 1989. Trusted server approach to multilevel security. In Proceedings of Annual Computer Security Applications Conference, 335-341.
 
5
HUNG, PATRICK C. K., KAMALAKAR KARLAPALEM AND JAMES GRAY III. 1999. Least Privilege Security in CapBasED-AMS. The International Journal of Cooperative Information Systems, vol. 8, no. 2 & 3, 139-168.
 
6
LEYMANN F. 2001. Web Services Flow Language (WSFL 1.0). IBM Corporation.
 
7
LEYMANN F., D. ROLLER AND M.-T. SCHMIDT. 2002. Web services and business process management. IBM Systems Journal, vol. 41, no.2, 198-211.
 
8
JSAML WHITEPAPER: http://www.netegrity.com/files/JSAML whitepaper.pdf
 
9
OASIS SAML: http://www.oasis-open.org/committees/security
 
10
ROSSI, MICHAEL. 2002. Process Management: A Fundamental Component of Successful Web Service Execution. Workflow Handbook 2002 WfMC, 117-132.
 
11
THATTE, S. 2001. XLANG - Web Services for Business Process Design. Microsoft Corporation.
 
12
UDDI ORGANIZATION: www.uddi.org
 
13
WEBMETHODS: www.webmethods.com
 
14
WORLD WIDE WEB CONSORTIUM (W3C): www.w3c.org

CITED BY  2
Patrick C. K. Hung , Kamalakar Karlapalem, A secure workflow model, Proceedings of the Australasian information security workshop conference on ACSW frontiers 2003, p.33-41, February 01, 2003, Adelaide, Australia
Patrick C. K. Hung , Guang-Sha Qiu, Specifying conflict of interest assertions in WS-policy with Chinese wall security policy, ACM SIGecom Exchanges, v.4 n.1, p.11-19, Spring, 2003

INDEX TERMS

Primary Classification:
  H. Information Systems
  H.3 INFORMATION STORAGE AND RETRIEVAL
      H.3.5 On-line Information Services
          Subjects: Web-based services

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS
      C.2.5 Local and Wide-Area Networks
          Subjects: Internet (e.g., TCP/IP)

  D. Software
  D.2 SOFTWARE ENGINEERING
        D.2.11 Software Architectures
            Subjects: Domain-specific architectures
  D.3 PROGRAMMING LANGUAGES
      D.3.2 Language Classifications

          Nouns: Java

  I. Computing Methodologies
  I.7 DOCUMENT AND TEXT PROCESSING
      I.7.2 Document Preparation

          Nouns: XML

  K. Computing Milieux
  K.4 COMPUTERS AND SOCIETY
      K.4.4 Electronic Commerce
          Subjects: Security


General Terms:
Design, Languages, Management


Keywords:
conflict of interest, security risk factor, separation of duties, web services Endpoint language

Collaborative Colleagues:
Patrick C. K. Hung: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player