A Portable Interceptor Mechanism on SOAP for Continuous Audit

Web services has become popular in modern distributed applications, and the SOAP technology currently is the most used in Web services. Recent middleware research works widely use interception approach for many problem domains, for example fault tolerance, continuous audit {CA), security etc. Instea...

Full description

Saved in:
Bibliographic Details
Main Authors: Chen-Liang Fang, Deron Liang, Fengyi Lin, Chien-Cheng Lin, Chu, W.C.-C.
Format: Conference Proceeding
Language:English
Subjects:
Computerized monitoring
Engines
Fault tolerance
Marine technology
Middleware
Oceans
Routing
Security
Simple object access protocol
Web services
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Web services has become popular in modern distributed applications, and the SOAP technology currently is the most used in Web services. Recent middleware research works widely use interception approach for many problem domains, for example fault tolerance, continuous audit {CA), security etc. Instead of providing a portable interceptor as CORBA does, SOAP 1.2 provides an intermediary mechanism. Due to backward compatibility issue, we found intermediary mechanism is not a feasible solution for interception. Furthermore, our use case analysis found that CORBA Portable Interceptor functionality does not fulfill all requirements of continuous audit. This motivates us to develop a new portable interceptor mechanism (PIM) on SOAP for CA. In this paper, we propose a PIM on SOAP to meet the interception requirements for Web services. Our PIM includes portable interceptor management in SOAP engine and portable interceptor interface definitions.
ISSN:1530-1362
2640-0715
DOI:10.1109/APSEC.2006.9