SOA BASED MULTI PARTY WEB SERVICES USING DYNAMIC AUTHENTICATION
|Nalini Priya. G1#, Balamurugan B2*
|Corresponding Author: Balamurugan , E-mail: [email protected] , [email protected]|
|Related article at Pubmed, Scholar Google|
Distributed applications has been a big boon for the development of several applications ranging from on-time supply chain management ,virtual collaborations and several kinds of service integration across organizations. Often this leads to new challenges in security and dependability. Collaborating services in a system with a Service-Oriented-Architecture (SOA) may belong to different security realms but often need to be engaged dynamically at runtime. If their security realms do not have a direct cross-realm authentication relationship, it is technically difficult to enable any secure collaboration between the services. A potential solution to this would be to locate intermediate realms at runtime, which serve as an authentication-path between the two separate realms. However, the process of generating an authentication path for two distributed services can be highly complicated. It could involve a large number of extra operations for credential conversion and require a long chain of invocations to intermediate services. In this paper, we address this problem by designing and implementing a new cross-realm authentication protocol for dynamic service interactions, based on the notion of service-oriented multi-party business sessions. Our protocol requires neither credential conversion nor establishment of any authentication path between the participating services in a business session.