0 McLean, VA August 8, 2006 SOA, Semantics and Security.

Slides:



Advertisements
Similar presentations
웹 서비스 개요.
Advertisements

Presented to: By: Date: Federal Aviation Administration Registry/Repository in a SOA Environment SOA Brown Bag #5 SWIM Team March 9, 2011.
Web Service Architecture
Research Issues in Web Services CS 4244 Lecture Zaki Malik Department of Computer Science Virginia Tech
Intesar G Ali IT DepartmentPalestinian Land Authority Web services Prepared by: Intesar Ali IT Department PLA August 2010.
Web Service Ahmed Gamal Ahmed Nile University Bioinformatics Group
UDDI v3.0 (Universal Description, Discovery and Integration)
Web Services Darshan R. Kapadia Gregor von Laszewski 1http://grid.rit.edu.
Building an Operational Enterprise Architecture and Service Oriented Architecture Best Practices Presented by: Ajay Budhraja Copyright 2006 Ajay Budhraja,
A Successful RHIO Implementation
SOA and Web Services. SOA Architecture Explaination Transport protocols - communicate between a service and a requester. Messaging layer - enables the.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
1 Introduction to XML. XML eXtensible implies that users define tag content Markup implies it is a coded document Language implies it is a metalanguage.
Latest techniques and Applications in Interprocess Communication and Coordination Xiaoou Zhang.
Troy Hutchison Service Oriented Architecture (SOA) Security.
Web Services Andrea Miller Ryan Armstrong Alex. Web services are an emerging technology that offer a solution for providing a common collaborative architecture.
A Heterogeneous Network Access Service based on PERMIS and SAML Gabriel López Millán University of Murcia EuroPKI Workshop 2005.
Web Services Michael Smith Alex Feldman. What is a Web Service? A Web service is a message-oriented software system designed to support inter-operable.
Web services A Web service is an interface that describes a collection of operations that are network-accessible through standardized XML messaging. A.
Web service testing Group D5. What are Web Services? XML is the basis for Web services Web services are application components Web services communicate.
Processing of structured documents Spring 2003, Part 6 Helena Ahonen-Myka.
Introduction to UDDI From: OASIS, Introduction to UDDI: Important Features and Functional Concepts.
THE NEXT STEP IN WEB SERVICES By Francisco Curbera,… Memtimin MAHMUT 2012.
Cardea Requirements, Authorization Model, Standards and Approach Globus World Security Workshop January 23, 2004 Rebekah Lepro Metz
Web Services Mohamed Fahmy Dr. Sherif Aly Hussein.
Web Services (Part 1) Service-Oriented Architecture Overview ITEC 625 Web Development Fall 2006 Reference: Web Services and Service-Oriented Architectures.
C Copyright © 2009, Oracle. All rights reserved. Appendix C: Service-Oriented Architectures.
McLean, VA May 23, 2006 SOA: Reference Model, Standards and Specifications This document is confidential and is intended solely for the use and information.
UDDI ebXML(?) and such Essential Web Services Directory and Discovery.
Web Services & WCF ~ Ankit. Web services A web service is a collection of protocols and standards used for exchanging data between applications or systems.
Web Service Bright + Ong. Meaning A collection of protocols and standards used for exchanging data between applications or systems Written in various.
International Telecommunication Union Geneva, 9(pm)-10 February 2009 ITU-T Security Standardization on Mobile Web Services Lee, Jae Seung Special Fellow,
Shib-Grid Integrated Authorization (Shintau) George Inman (University of Kent) TF-EMC2 Meeting Prague, 5 th September 2007.
Dr. Bhavani Thuraisingham October 2006 Trustworthy Semantic Webs Lecture #16: Web Services and Security.
Web Services Kanda Runapongsa Dept. of Computer Engineering Khon Kaen University.
OpenPASS Open Privacy, Access and Security Services “Quis custodiet ipsos custodes?”
Web Services Based on SOA: Concepts, Technology, Design by Thomas Erl MIS 181.9: Service Oriented Architecture 2 nd Semester,
Web Services Standards. Introduction A web service is a type of component that is available on the web and can be incorporated in applications or used.
XML Web Services Architecture Siddharth Ruchandani CS 6362 – SW Architecture & Design Summer /11/05.
AUTHORS: MIKE P. PAPAZOGLOU WILLEM-JAN VAN DEN HEUVEL PRESENTED BY: MARGARETA VAMOS Service oriented architectures: approaches, technologies and research.
SOA-39: Securing Your SOA Francois Martel Principal Solution Engineer Mitigating Security Risks of a De-coupled Infrastructure.
Semantic Web Technologies Research Topics and Projects discussion Brief Readings Discussion Research Presentations.
1 Web Services Web and Database Management System.
Copyright © 2003 Jorgen Thelin / Cape Clear Software 1 A Web Services Security Framework Jorgen Thelin Chief Scientist Cape Clear Software Inc.
Kemal Baykal Rasim Ismayilov
1 Registry Services Overview J. Steven Hughes (Deputy Chair) Principal Computer Scientist NASA/JPL 17 December 2015.
WSDL – Web Service Definition Language  WSDL is used to describe, locate and define Web services.  A web service is described by: message format simple.
Introduction to Web Services. Agenda Motivation History Web service model Web service components A walkthrough examples.
© Drexel University Software Engineering Research Group (SERG) 1 The OASIS SOA Reference Model Brian Mitchell.
Intro to Web Services Dr. John P. Abraham UTPA. What are Web Services? Applications execute across multiple computers on a network.  The machine on which.
Introduction to Web Services Presented by Sarath Chandra Dorbala.
Basics of SOA Testing Assurance Services Unit 24 February 2016.
Web Services Blake Schernekau March 27 th, Learning Objectives Understand Web Services Understand Web Services Figure out SOAP and what it is used.
Web Services. Web Service: Simple definition : “ Service Offered On the Web “ Technically : “ A Web Service is a programmable application component that.
Software Architecture Patterns (3) Service Oriented & Web Oriented Architecture source: microsoft.
By Jeremy Burdette & Daniel Gottlieb. It is an architecture It is not a technology May not fit all businesses “Service” doesn’t mean Web Service It is.
A service Oriented Architecture & Web Service Technology.
Service Oriented Architecture (SOA) Prof. Wenwen Li School of Geographical Sciences and Urban Planning 5644 Coor Hall
Sabri Kızanlık Ural Emekçi
WEB SERVICES.
Unit – 5 JAVA Web Services
Implementing a service-oriented architecture using SOAP
Distributed System using Web Services
Presentation transcript:

0 McLean, VA August 8, 2006 SOA, Semantics and Security

1 SOA interactions require answering five key questions 1.How can the Consumer dynamically discover the existence of a Provider, which can provide the services being requested? 2.Assuming the Consumer knows of the Providers existence, how can it locate the Provider? 3.Assuming the Consumer has located the Provider, how can the two describe how to connect to each other, in a standard format which can be understood regardless of their IT platforms? 4.Assuming they have described themselves, how can they exchange messages in a common messaging format which is independent of their underlying platforms? 5.Assuming they have agreed upon a common messaging format, what data format can they use to exchange data independent of their underlying database technologies? Application 1 Service Consumer Application 2 Service Provider

2 High Level Description Web Service Provider (Provider) develops its description and specifies its interfaces using WSDL, and registers itself in the public UDDI registry Web Service Consumer (Consumer) queries the UDDI registry in real time, and discovers that Provider has services it is looking for Consumer downloads Providers WSDL specification from the Provider (including the format of SOAP messages the Provider can accept) Consumer then develops a request in the form of an XML based SOAP message (using a SOAP engine to translate from its native format to SOAP) Consumer then calls Provider by sending the SOAP message over HTTP Provider receives the SOAP message and translates to its own native format using a SOAP decoder Provider composes a reply as a SOAP message in a format which can be understood by Consumer (the incoming SOAP message from Consumer also includes information on the format of SOAP messages it can accept) Provider then replies to Consumer by sending the SOAP message over HTTP Web Service Provider (Provider) develops its description and specifies its interfaces using WSDL, and registers itself in the public UDDI registry Web Service Consumer (Consumer) queries the UDDI registry in real time, and discovers that Provider has services it is looking for Consumer downloads Providers WSDL specification from the Provider (including the format of SOAP messages the Provider can accept) Consumer then develops a request in the form of an XML based SOAP message (using a SOAP engine to translate from its native format to SOAP) Consumer then calls Provider by sending the SOAP message over HTTP Provider receives the SOAP message and translates to its own native format using a SOAP decoder Provider composes a reply as a SOAP message in a format which can be understood by Consumer (the incoming SOAP message from Consumer also includes information on the format of SOAP messages it can accept) Provider then replies to Consumer by sending the SOAP message over HTTP Reference models, architecture, specifications and standards realize SOA interactions only in part; semantics are also vital Application 1 Service Consumer Application 2 Service Provider UDDI Service Registry Semantics are most often thought of in terms of understanding messages and functions...

3... semantics are necessary to properly secure services also! Sharing information sharing across organizational boundaries requires semantics not only to properly interact with services but also to properly secure services also. Shared semantics help to: –Locate and trust sources of information used to understand or enforce security requirements –Comprehend the available data upon which policy authors can to craft access control policy –Distribute decision and enforcement of access control policies –Represent service identity and authentication information to services Even the various authorization models that can be applied to an SOA require shared understanding of attributes, policy and authoritative sources –Attribute based access control –Attribute taxonomies –Service taxonomies

4 Semantics and security are key pieces of successful interactions across organizational boundaries Complete SOA Security solution augments traditional security solutions and infrastructure to provide a more robust application layer security model Lines of communication utilize Transport Layer Security (SSL) Messages signed to provide message level security (message integrity) –Protects message integrity when handled by intermediaries Organization A Service Provider Organization B Service Consumer Traditional Firewall Traditional Firewall XML Firewall XML Firewall Security PEP Security PEP Identity & Attribute StoreAuthorization Policy Store PKI Policy Decision Service Attribute Information Service Policy Information Service Certificate Validation Service Audit Service Service Logs Identity & Attribute StoreAuthorization Policy Store PKI Policy Decision Service Attribute Information Service Policy Information Service Certificate Validation Service Audit Service Service Logs Components illustrated are solely logical … capabilities may be combined based on COTS capabilities

5 Some of the places that taxonomies and semantics matter Legend: In-Line AuthorizationPre-Authorization PEP – Policy Enforcement Point AP – Attribute Point PDP – Policy Decision Point What policy should I apply to a service request? What attributes can I forward to a PEP? How should I express the action Id like to execute? What do the attributes mean?

6 Questions? Rebekah Metz Booz Allen Hamilton Telephone: