2011³â Ãß°è Çмú´ëȸ
Current Result Document :
| ÇѱÛÁ¦¸ñ(Korean Title) |
An Ontology Based Approach on Secure-Tolerant SOAP Messages |
| ¿µ¹®Á¦¸ñ(English Title) |
An Ontology Based Approach on Secure-Tolerant SOAP Messages |
| ÀúÀÚ(Author) |
Aziz Nasridinov
Pham Phuoc Hung
Lin Qing
Byun Jeongyong
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 38 NO. 2(C) PP. 0160 ~ 0163 (2011. 11) |
Çѱ۳»¿ë
(Korean Abstract) |
|
¿µ¹®³»¿ë
(English Abstract) |
The WS-Security family of security standards are widely utilized aiming at securing exchanges of SOAP messages among partners in a collaborative environment. Although such standards are suitable for ensuring end-to-end message level security, certain attacks such as XML Rewriting Attack may still occur and lead to significant security vulnerabilities. In this paper we propose ontology based approach on secure-tolerant SOAP message that can successfully combat with the security threats. We develop ontology-based schema to include a structure information of outgoing SOAP message and validate this information in the receiving end. Thus, allow to detect XML rewriting attacks early in the validating process. Also in this paper we propose a recover mechanism in which all modifications on SOAP message are written to a log before they are applied. If some security failure on SOAP message occurs, program could check this log and recover from effects of a successful execution.
|
| Å°¿öµå(Keyword) |
|
| ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|
