Enabling message security for RESTful services
ICWS 2012, 19th IEEE International Conference on Web Services, June 24-29, 2012, Honolulu, Hawaii, USA
The security and dependability of cloud applications require strong confidence in the communication protocol used to access web resources. The mainstream service providers nowadays are shifting to REST-based services in the detriment of SOAP-based ones. REST proposes a lightweight approach to consume resources with no specific encapsulation, thus lacking of meta-data descriptions for security requirements. Currently, the security of RESTful services relies on ad-hoc security mechanisms (whose implementation is error-prone) or on the transport layer security (offering poor flexibility). We introduce the REST security protocol to provide secure service communication, together with its performance analysis when compared to equivalent WS-Security configuration.
| Keywords: | REST, Performance, Message Security, Protocol |
| Type: | Conference |
| Language: | English |
| City: | Honolulu |
| Country: | UNITED STATES |
| Date: | June 2012 |
| Department: | Networking and Security |
| Eurecom ref: | 3739 |
| Copyright: | © 2012 IEEE. Personal use of this material is permitted. However, permission to reprint/republish this material for advertising or promotional purposes or for creating new collective works for resale or redistribution to servers or lists, or to reuse any copyrighted component of this work in other works must be obtained from the IEEE. |
| Bibtex: | @inproceedings{EURECOM+3739, doi = {http://dx.doi.org/10.1109/ICWS.2012.94}, year = {2012}, title = {{E}nabling message security for {REST}ful services}, author = {{S}erme, {G}abriel and {D}e {O}liveira, {A}nderson {S}antana and {M}assiera, {J}ulien, {R}oudier, {Y}ves}, booktitle = {{ICWS} 2012, 19th {IEEE} {I}nternational {C}onference on {W}eb {S}ervices, {J}une 24-29, 2012, {H}onolulu, {H}awaii, {USA} }, address = {{H}onolulu, {UNITED} {STATES}}, month = {06}, url = {http://www.eurecom.fr/publication/3739} } |
| See also: |
|
Permalink: http://www.eurecom.fr/publication/3739
