Di Wu,Yabo Dong,Jian Lin,Miaoliang Zhu

DOI: https://doi.org/10.1007/11563952_52

2005-01-01

Abstract:The fast development of E-Commerce and information technology brings much higher requirements for enterprise informationization. Because of the differences in platforms, development languages and standards etc, enterprise application integration (EAI) has become the important form of enterprise informationization to support complex business processes. Web services have emerged as the next generation of integration technology which provides the power to support interoperability. However EAI doesn’t just present new interoperability challenges; it also presents serious privacy and security challenges. This paper presents security architecture of Web Services based EAI which uses distributed Single Sign On authentication and distributed Role-based Access Control authorization. The basic concept and prototype system of the security architecture are described in detail.

William Song,Deren Chen,Jen-Yao Chung

DOI: https://doi.org/10.1007/978-3-540-30209-4_16

2004-01-01

Abstract:E-commerce development and applications have been bringing the Internet to business and marketing and reforming our current business styles and processes. As Business to Business (B2B) has been a main stream of the e-commerce activities for a decade, business to customer (B2C) is still a new area to explore. Among the business to customer activities, a strong impact is security, i.e., how to protect secrets of various parties in business transactions. Different security methods apply to different businesses and meet different customers' needs. The methods with low cost and easy to implement may be less secure, whereas the methods providing high level security can be unaffordable to many small enterprises and individuals. In particular, people, while browsing or surfing on the Web, wish to pay a very small amount and "buy" (perhaps just download) an interesting item from the Web. The "click-and-pay" or "click-and-buy" does not require high security protection and should be convenient to use (buy and pay). Micro-payment issue emerges from the context to meet the need of applicability of low secure and cost in e-purchase. Payments of small amounts may enable many exciting applications on the Internet, such as selling information, small software and services. Users are willing to pay a small amount of money for the information, software and services. While the payment is small, expensive security protection is unnecessary. What users require may include negligible delay, rapid click-through, and automatic billing. Micro-payment is a service intensive activity, where many payment tasks involve different forms of services, such as payment method selection for buyers, security support software, product price comparison, etc. In this paper, we intend to investigate and analyze various aspects of micro-payment system using the web service technology. We will discuss business patterns for micro-payment systems using Web Services approaches.

Bao Liu,Minhua Shi,Deren Chen

2001-01-01

Abstract:Web Services are self-contained, modular applications that can be described, published, located, and invoked over a network, generally, the Web. Yet the problem emerges as different Web Services interoperate each other. In this paper we recommend the Simple Object Access Protocol (SOAP)[1] as the communication standard in the Web Services Architecture to solve the problem.First, we describe what is Web Services and present the architecture of it. Then, according to the challenge that Web Services faces, we address the key enabling technologies of which SOAP be composed. SOAP has many advantages that other binary protocols, such as Java RMI, do not have. Finally, by introducing an E-business model based on the integration of SOAP, UDDI [2], MQ [3] etc., we show the manner and flow of SOAP to implement Web Services architecture.

Peng Qi-rui,Wang Cheng,Wu Jing,Li Jun

DOI: https://doi.org/10.1109/icsess.2010.5552305

2010-01-01

Abstract:To integrate distributed information systems in group companies, people favor the Service-Oriented-Architecture (SOA) for its features such as loose-coupling and standardization. But SOA brings security problems. Consequently, an authentication and authorization solution is proposed in this paper. By designing security architecture based on Service-Access-Agent, this solution can simplify the security program, and bring good to the system flexibility and loose coupling, thereby meet the integrated system's requirements for dynamics and agility. This solution has been applied to a project of “national 863 plan”, and shown its validity in engineering practices.

MAO Weifeng,PING Lingdi,JIANG Li,CHEN Xiaoping

DOI: https://doi.org/10.3969/j.issn.1000-3428.2006.12.068

2006-01-01

Abstract:SECOS is a secure operating system with independent intellectual property right,which accords with the requirements of level 4 secure operation system technology.This paper illustrates some key issues of the system,including design method for enchancement of security,improved model from the Bell-La Padula MAC(mandatory access control) implementation,the realization of the model,formal method during the system development,conversiion channel analysis and its prevention,and secure deletion.The performance evaluation shows the design and implementation of SECOS is effective.

Oldooz Karimi

DOI: https://doi.org/10.48550/arXiv.1108.1314

2011-08-05

Abstract:In this article, we examine how security applies to Service Oriented Architecture (SOA). Before we discuss security for SOA, lets take a step back and examine what SOA is. SOA is an architectural approach which involves applications being exposed as "services". Originally, services in SOA were associated with a stack of technologies which included SOAP, WSDL, and UDDI. This article addresses the defects of traditional enterprise application integration by combining service oriented-architecture and web service technology. Application integration is then simplified to development and integration of services to tackle connectivity of isomerous enterprise application integration, security, loose coupling between systems and process refactoring and optimization.

Software Engineering

Sheng Zhang,Yao-Li Wang,Gang Zhang

2010-01-01

Abstract:Service-oriented architecture provides effective techniques to build new commercial bank. An implementation program of the business, the semantics and a three-layer service-oriented architecture are proposed in this paper. The knowledge object of the banks' business domain is classified through knowledge modeling; the semantic description, the relationships and levels of business concepts are given; the banks' business process content and boundaries are defined. The program in the paper divides the business activities into the minimum business semantic units, and forms the service metadata models. The application-layer communication protocol Financial Level 7 is represented, which gives a definition of compliance service by using the semantic model of the business components, and also gives the technical communication protocol between systems and system components by designing the syntax, element, session and message mechanisms of the system components.

li zhang,gang zhang

DOI: https://doi.org/10.4028/www.scientific.net/AEF.4.172

2012-01-01

Abstract:SOA has been the effective technical solution to enterprise application integration and business process rebuilding. The paper presents a reference implementation scheme of Commercial Bank Card System based on SOA. In requirement tier, the implementation plan first establishes the full concept model and logical model of Commercial Bank Card System from business request(business use case-business step-atomic business) to system request (system use case-system step-atomic component), then in semantics tier, we give out full description of the model through the combination of OWL and BPEL. At last a SOA's three-tier framework of "requirement-semantics-service" has been built for the Commercial Band Card System.

郑晓梅,毛磊,夏阳

DOI: https://doi.org/10.3969/j.issn.1000-7024.2004.04.037

2004-01-01

Abstract:The payment system is one of the key issues of e-commerce development. The technical difficulties of the payment mode based on SET protocol were described. An idea of designing a new payment system model was put forward, combining with the technical advantages of web service. This system adopted SET protocol as the basic flow frame of the payment system to ensure the system high security. In addition, the payment system adopted Web service technology to simplify the authentication mechanism of the set payment mode and to get rid of the difference of each participant platform of the payment system. Which made the payment system easier to deploy and implement over other traditional payment systems.

Fengyu Zhao,Xin Peng,Wenyun Zhao

DOI: https://doi.org/10.1109/icis.2009.80

2009-01-01

Abstract:In service oriented architecture (SOA) environment, the communication and infrastructure security is crucial. The most important specification addressing Web services security is WS-Security, which collaborates with the SOAP message specifications, providing integrity, confidentiality and authentication for Web services. However, WS-Security focuses SOAP message security between trusted partners. In SOA applications, there are other vulnerabilities which can be exploited to attack by anonymous customer or even trusted partners, and these vulnerabilities do not gain enough attention as WS-Security. Among them, denial-of-service (DoS) is one attack cluster, which exhausts computer and network resources and reduces the availability of Web services. Another one is sensitive data leakage in a specific application domain. In this paper, the security of SOA applications is viewed as the security domain and a three-tier domain was divided based on security domain analysis. For each security sub-domain, security requirement scenario and requirements are presented. The security domain models were given which can be used to build up security services for sub-domain. Based on security model and security service assets, which can evolve along with understanding on security domain, the developers can establish the security implementation for SOA application integration.

Yan Chen

2014-01-01

Abstract:With the development of computer,network and communication technology,e-commerce has become an indispensable part of people's life. At the same time,safety problems have become the core problem of the electronic commerce. This design is the simulation of realizing the online safety payment system of electronic toll ticket system,aiming to complete the payment process simulation of security communication based on SSL protocol in the bank server and client.

TAN Bin,XUE Zhi,WANG Yi-jun

DOI: https://doi.org/10.3969/j.issn.1009-8054.2007.11.028

2007-01-01

Abstract:This paper analyzes and researches the security of Internet Payment System,and proposes a model based on hierarchal security.A brief description of internet banking and third-part payment is also given.

Sheng Zhang,Yaoli Wang,Gang Zhang

DOI: https://doi.org/10.1109/ICIME.2010.5477684

2010-01-01

Abstract:Service-oriented architecture provides effective techniques to solve the problems of the enterprise application integration and to implement the business process re-building. In this paper, a reference implementation program of the business, semantics and service three-layer Integrated Financial Enterprise service architecture (IFE) is proposed. This program classifies the knowledge object of the banks' business domain through knowledge modeling, makes the description of the semantics, relationships, and levels of business concepts, defines the banks' business process content and boundaries, constructs the standardization of business processes, and forms business use cases. It divides the business activities into the minimum business semantic units, and forms the service metadata models. The authors propose the application-layer communication protocol Financial Level 7(FL7) for IFE. FL7 gives a definition of compliance service by using the semantic description model of the business components, and also gives the technical communication protocol between systems and system components by analyzing and designing the syntax, element, session and message mechanisms of the system components. All of them conduce to the solutions to problems of the business process standardization and the implementation of the business and technical architecture.

ZHU Lei,ZHOU Ming-Hui,LIU Tian-Cheng,MEI Hong

DOI: https://doi.org/10.3321/j.issn:0254-4164.2005.04.027

2005-01-01

Chinese Journal of Computers

Abstract:Service Oriented Architecture (SOA) is a method to design and construct loose coupling software systems. It turns the distributed applications developed on middleware into software services on Internet. Traditional permission management system on middleware has good flexibility and basically, meets the security requirements of closed system, but under SOA, it cannot meet the authorization requirements of requesting services and sharing resources between different nodes and systems. This paper proposes a service oriented permission management model, supporting delegation and reasoning to provide application developers with improved permission management mechanism and to expand capabilities of middleware to share resources and services across organizations. The above model is implemented and validated in a J2EE application server. The experiments show that the model has high flexibility and scalability, and it is reasonable that when over 50 clients request at the same time, response time increases a lot because of signature verifications and file IO operations.

Xi Li,Wei Zhu,Mingxing He

DOI: https://doi.org/10.1109/3CA.2010.5533752

2010-01-01

Abstract:Emerging electronic commerce becomes popular together with the considerable increase of mobile device. Since mobile payments will become one of the most important mobile services. However, most people do not have a fancy for remote mobile payment, or only is limited to micro-payment. The most important problem they worry about is the security of the mobile devices and the applications along with the complexity of payment process. The paper presents a secure remote payment architecture based on smart card in mobile devices that simplifies the payment process and takes a finance measure to permit a more fairly allocation of risks between merchants and consumers. Furthermore, security policies between the security properties of the payment application and the resource limitations are defined. It not only provides strong security but also makes the system open to common payment. Finally, ID-based signature mechanism has advantages over the others based on CA in terms of key distribution and scalability of increasing security level for remote mobile payment service.

张华,范小建,吴钦,丁卫平

DOI: https://doi.org/10.3969/j.issn.1673-2340.2012.02.004

2012-01-01

Abstract:There is a large number of information systems for public security bureau at present, most of which are challenged by difficulties of data-reuse, real-time sharing and cooperation of applications and so on. The paper introduces an integration platform for public security information resources, as well as its concrete operating procedures. This paper integrates systems for public security bureau from the four aspects of login, application, data and circuit, based on the service-oriented architecture （SOA）, the single sign-on technology of USB-key authentication based on agent and modeling technology of public security business based on JAVA message service （JMS） graphically. Now the service platform of public security information resources has a good practical value through the related tests, and plays an important role in police intelligence analysis.

Shudan Lin,Shijian Luo,Xiaoxia Ding

DOI: https://doi.org/10.1109/ccis.2012.6664293

2012-01-01

Abstract:The objective of this paper is to improve the safety of Internet product interface and the user's sense of security on Internet by means of design, thus enhancing user's reliability of the data security in cloud and promoting the development of cloud. Taking online payment product interface as an example, through comparison of process design, color, form, logo and etc. of payment interface on domestic mainstream platforms, a set of interface design suggestions on rules and methods conveying a sense of security semantics are made. Based on the rules and methods summarized, the main interface of a domestic payment product was redesigned, and the prototype was evaluated by user test to verify the availability and effectiveness of such suggestion on security sensation design.

屈科文,李增智,王立,袁飞

DOI: https://doi.org/10.3969/j.issn.1001-3695.2004.03.065

2004-01-01

Abstract:An architecture of service platform based on Internet is proposed in this paper.With the separation of connection management and service logic,creation and configuration of Internet service become more convenient,and also service management can be expediently implemented.The architecture can facilitate the services integration of Internet and intelligent network.

XU Feng,LAI Hai-Guang,HUANG Hao,XIE Li

DOI: https://doi.org/10.3321/j.issn:0254-4164.2005.04.028

2005-01-01

Chinese Journal of Computers

Abstract:Service oriented architecture (SOA) is an evolution of client/server architecture. A SOA based system can transparently incorporate services running on different software platforms. It could drive the costs down by achieving automated code generation, reuse, and interoperability. But it will cause the complexity of security management due to its loose couple and dynamic characteristics. The paper first reviews the development of access control technology, and then presents a workflow based and services oriented role based access control (WSRBAC) model. In the model, the authors introduce two notions of services and authorization transfer to describe dynamic service oriented architecture. In WSRBAC model, access control system can make its access control decisions by capturing practical relevant environmental context. It can realize access control with dynamic grant and adapt permissions based on the state of workflows and services. This model can enhance system security and provide flexibility in access control system.

张国锋,何俊,徐从富

DOI: https://doi.org/10.3724/sp.j.1087.2008.02926

2008-01-01

Journal of Computer Applications

Abstract:With the introduction of the Service Oriented Architecture(SOA),the integration and development speed of software systems will become quicker and quicker.But the security mechanism of software systems has to be rebuilt when they are developed.Moreover,security mechanism becomes more complex when the number of software systems increases rapidly.A Business Process Execution Language(BPEL)-based method for general security control module design was proposed,which reduced the development and management work.The operation mechanism of right module was exemplified by the account integration of Enterprise Resource Planning(ERP) in manufacturing with e-business system.