Modeling Authorization in an SOA based Application Scenario

M. Alam, M. Hafner, and R. Breu (Austria)


Service Oriented Architectures, Authorization, Decentralized User Management, Web Services.


We present a novel approach for the specification of ac cess rights in a distributed environment based on web ser vices. Our approach overcomes the limitations of tradi tional concepts when applied to scenarios requiring decen tralized user and rights management by merging two con cepts - notably Role Based Access Control and Attribute Based Access Control. We extend the SECTET framework for model driven security in B2B-workflow scenarios by an abstract policy specification language and define a ref erence architecture for authorization enforcement in a web services based peer-to-peer environment.

Important Links:

Go Back