期刊名称:International Journal of Innovative Research in Computer and Communication Engineering
印刷版ISSN:2320-9798
电子版ISSN:2320-9801
出版年度:2013
卷号:1
期号:3
出版社:S&S Publications
摘要:Cloud Computing is found to be today’s most commonly used Service Oriented Architecture (SOA)implementation. Cloud services are exposed as Web Services which follow the industry standards such as WSDL forservice description, SOAP for enabling request and response and so on. Hence Web services security is of particularimportance for the security assessment of cloud systems. Securing SOAP message exchange using WS-Securitystandards introduces new surface for attacks. The system proposed uses a gateway at client side as well as server sidewhich could counter the attacks introduced due to WS-Security standards as well as other attacks introduced. Thehandlers at the gateway uses hardened SOAP schema as the source for validating the restricted form of requestaccording to the requestor and provider and ensures security. The SOAP Schemata which introduces loopholes in termsof security needs to be hardened, as a result of which high resource consumption leading to DOS attack is introduced.This type of attack is countered by streaming the request before the service execution at a trusted gateway and enablingearlier detection of security violations.
关键词:Cloud Computing; Web Service Security; Streaming; Schema Validation; SOAP message; Service Oriented;Architecture
