TY - GEN
T1 - Extended BPEL with heterogeneous authentication mechanisms in service ecosystems
AU - Nassar, Pascal Bou
AU - Badr, Youakim
AU - Biennier, Frederique
AU - Barbar, Kablan
PY - 2009
Y1 - 2009
N2 - Service ecosystems provide distributed evolutionary capabilities allowing services to recombine and evolve in sustainable environments. Web services play a crucial role in service ecosystems since they support interoperable machine-to-machine interactions and help in developing new services from existing services by using a variety of composition languages. Business Process Execution Language (BPEL) has recently emerged as the de-facto standard for Web service composition. From the security perspective, Web service providers may require different authentication mechanisms to securely invoke their services. The integration of different authentication mechanisms complicates the global authentication scheme of BPEL-based processes and raises a challenge in adopting BPEL in service ecosystems. In this work, we propose the Security Service concept to define activity single sign-on (ASSO) for federated identify-based authentication. The Security Service allows the integration of heterogeneous authentication mechanisms in the context of multiple service providers. We also extend the activity to ensure non-intrusive extension of BPEL language and implement the Security Service in a peer-to-peer network.
AB - Service ecosystems provide distributed evolutionary capabilities allowing services to recombine and evolve in sustainable environments. Web services play a crucial role in service ecosystems since they support interoperable machine-to-machine interactions and help in developing new services from existing services by using a variety of composition languages. Business Process Execution Language (BPEL) has recently emerged as the de-facto standard for Web service composition. From the security perspective, Web service providers may require different authentication mechanisms to securely invoke their services. The integration of different authentication mechanisms complicates the global authentication scheme of BPEL-based processes and raises a challenge in adopting BPEL in service ecosystems. In this work, we propose the Security Service concept to define activity single sign-on (ASSO) for federated identify-based authentication. The Security Service allows the integration of heterogeneous authentication mechanisms in the context of multiple service providers. We also extend the activity to ensure non-intrusive extension of BPEL language and implement the Security Service in a peer-to-peer network.
UR - http://www.scopus.com/inward/record.url?scp=74549217753&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=74549217753&partnerID=8YFLogxK
U2 - 10.1145/1643823.1643847
DO - 10.1145/1643823.1643847
M3 - Conference contribution
AN - SCOPUS:74549217753
SN - 9781605588292
T3 - Proceedings of the International Conference on Management of Emergent Digital EcoSystems, MEDES '09
SP - 126
EP - 133
BT - Proceedings of the International Conference on Management of Emergent Digital EcoSystems, MEDES '09
PB - Association for Computing Machinery
T2 - 1st ACM International Conference on Management of Emergent Digital EcoSystems, MEDES '09
Y2 - 27 October 2009 through 30 October 2009
ER -