Abdramane BAH ; Pascal Andre ; Christian Attiogbé ; Jacqueline Konaté - Service Promotion in a Federation of Security Domains

arima:6757 - Revue Africaine de la Recherche en Informatique et Mathématiques Appliquées, October 28, 2021, Volume 34 - 2020 - Special Issue CARI 2020 - https://doi.org/10.46298/arima.6757
Service Promotion in a Federation of Security Domains

Authors: Abdramane BAH ; Pascal Andre ; Christian Attiogbé ; Jacqueline Konaté

Service Oriented Architecture (SOA) provides standardised solutions to share services between various security domains. But acces control to services is defined for each domain, and therefore the federation of security domains brings some flexibility to users of the services. To facilitatethe authentication of users, a solution is a federated access control that relies on the identity federation, which allows an user to authenticate once in one domain and to access the services of others according to her authorisation attributes. Since the access control requirements of services are specified using domain-specific authorisation attributes, the secure sharing of services in the federation becomes a real challenge. On the one hand, domains cannot abandon their access control models in favour of a global one; on the other hand, the redefinition of the access control requirements of services compromises the existing service consumers. This article extends our paper at CARI2020; we propose the promotion of services as a method that consists in publishing the services of domains at the federation level by redefining their access control requirements with the federation’s authorisation attributes. Our promotion method relies on mappings between federation’s authorisation attributes and those of domains to preserve existing service consumers and to support domain autonomy.We formally describe interaction and access to promoted services using operational semantics. The promotion method has been implemented with web services technologies.


Volume: Volume 34 - 2020 - Special Issue CARI 2020
Published on: October 28, 2021
Accepted on: January 15, 2021
Submitted on: September 3, 2020
Keywords: Access control,Web service,Federated SOA,Service Federation,Contrôle d’accès,Web service,Fédération de service,SOA,[INFO.INFO-SE]Computer Science [cs]/Software Engineering [cs.SE],[INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR]


Share

Consultation statistics

This page has been seen 17 times.
This article's PDF has been downloaded 5 times.