STREAM-BASED WEB SERVICE SECURITY PROCESSING SYSTEM

Web Services, like any other software applications, are subject to traditional security risks and issues such as authentication, authorization, encryption, secure sockets, and so on. A profound weakness of Web Services is their vulnerability to Denial of Service attacks exploiting XML processing.

Efforts have been made to secure Web Services’s availability as they have  become more and more popular for inter-enterprise communications. Existing security standards such as e.g. WS-Security only address message integrity and confidentiality, also user authentication and authorization. In this paper we present a system for protecting Web Services from Denial-of-Service (DoS) attacks.

In this paper we present a solution a stream-based WS-Security processing system, which enables an efficient processing in service computing and increases the robustness against different types of Denial-of-Service (DoS) attacks. The introduced system is capable of processing all standard-conforming applications of WS-Security in a streaming manner. The system can handle e.g. any order, number and nesting degree of encryption and signature operations, thus closing the gap towards more efficient and dependable Web Services.