| Publisher | University of Massachusetts | ||
|---|---|---|---|
| Format | 421.4KB PDF | Date added | 11 Oct 2006 |
| Topics | XML, Firewalls, Network Security | ||
| Downloads | 4 | ||
An XML firewall differs from a conventional firewall because its major task is to control access to web services rather than to filter untrusted addresses. An XML firewall can effectively protect web services from being attacked by inspecting a complete XML message including its head and data segments, and rejecting unauthorized web services invocation. This paper proposes a formal XML firewall security model using Role-Based Access Control (RBAC). Their proposed model supports user authentication and user authorization according to information stored in a user database and a policy database associated with an XML firewall. The formal model is designed compositionally using Petri nets, which can serve as a high-level design for XML firewall implementation.
Did you find this white paper useful?
7 out of 14 users found this white paper useful
Related white papers
Think Globally, Act Locally: Targeting New Customers with Geolocation
When it comes to content, "one size fits all" used to be the norm and web traffic was measured in "hits". No longer. Companies that are leading the...
Introducing Xomega for XML Object Modeling and Code Generation
XML-based Model Driven Development can be a simple, but very powerful alternative to the UML-based MDA and can result in significantly increased productivity, clean and robust designs and improved system...
Oracle Primavera P6 EPPM Integrations With Web Services and Events
Primavera Web Services is an integration technology that extends P6 functionality and business objects. Based on open standards such as SOAP, XML and WSDL, Primavera Web Services enable developers to...
Radio-Research Firm Reduces Production Time and Costs With Presentation Solution
Research Director, Inc. (RDI), one of the largest radio-research consulting firms in the United States, produces large, complex presentations that provide radio-audience data for its customers once every quarter. Faced...
Testing SIP Call Flows Using XML Protocol Templates
A Session Initiation Protocol (SIP) Call Flow is a casual sequence of messages that is exchanged between interacting SIP entities. This paper presents a novel test system for SIP based...
Consortium Develops New Accessible Multimedia Tool for the Print Disabled
The DAISY Consortium develops and promotes DAISY (the Digital Accessible Information System), the world's most widely used assistive reading technology for the print disabled. The consortium wanted a solution that...
Web Server Improvements with Microsoft Server 2008
This is another in our series about Microsoft Longhorn, also known as Server 2008. In this series we break down the most important components of Longhorn and give listeners the...
