Abstract
With the growing interest in service-oriented architectures, achieving seamless interoperability between heterogeneous middleware technologies has become increasingly important. While much work investigating functional interoperability between different middleware architectures has been reported, little practical work has been done on providing a unified andor interoperable view of security between the different approaches. In this paper we describe how the Secure WebCom distributed architecture provides access control policy interoperability support between a number of middleware security architectures. Secure WebCom uses the KeyNote trust management system to help coordinate the trust relationships between the different middleware systems and their associated access control policies. Middleware authorisation policies can be encoded in terms of cryptographic certificates, and vice-versa. This provides a unified view of access control across heterogeneous middleware systems and also provides the basis for decentralised support of middleware access control policies.
| Original language | English |
|---|---|
| Pages (from-to) | 301-313 |
| Number of pages | 13 |
| Journal | Journal of High Speed Networks |
| Volume | 15 |
| Issue number | 3 |
| Publication status | Published - 2006 |
Keywords
- Interoperability
- Middleware
- Role based access control
- Security
- Trust management
- Web services