%0 Journal Article %1 IJACSA.2011.020605 %A Rajender Nath, Gulshan Ahuja %D 2011 %J International Journal of Advanced Computer Science and Applications(IJACSA) %K Access Authentication; Authorization. Control; Services; Web %N 6 %T An Authorization Mechanism for Access Control of Resources in the Web Services Paradigm %U http://ijacsa.thesai.org/ %V 2 %X With the increase in web based enterprise services, there is an increasing trend among business enterprises to migrate to web services platform. Web services paradigm poses a number of new security challenges, which can only be realized by developing effective access control models. The fact that the enterprises allow access to the resources through web services requires development of access control models that can capture relevant information about a service requester at the time of access request and incorporate this information for making effective access control decisions. Researchers have addressed many issues related to authentication and authorization of web services requests for accessing resources, but the issues related to authorization work and identity based access are still poorly addressed. Authors of this paper focus on providing an extended approach to capture relevant information about a service requester and establish a certain level of trust so that amount of authorization work required for accessing any resource is reduced and service requests are served in an efficient manner. Compared with existing access control mechanisms, the proposed mechanism has reduced the amount of authorization work required for accessing resources across varied domains.

@article{IJACSA.2011.020605, abstract = {With the increase in web based enterprise services, there is an increasing trend among business enterprises to migrate to web services platform. Web services paradigm poses a number of new security challenges, which can only be realized by developing effective access control models. The fact that the enterprises allow access to the resources through web services requires development of access control models that can capture relevant information about a service requester at the time of access request and incorporate this information for making effective access control decisions. Researchers have addressed many issues related to authentication and authorization of web services requests for accessing resources, but the issues related to authorization work and identity based access are still poorly addressed. Authors of this paper focus on providing an extended approach to capture relevant information about a service requester and establish a certain level of trust so that amount of authorization work required for accessing any resource is reduced and service requests are served in an efficient manner. Compared with existing access control mechanisms, the proposed mechanism has reduced the amount of authorization work required for accessing resources across varied domains.}, added-at = {2014-02-21T08:00:08.000+0100}, author = {{Rajender Nath}, Gulshan Ahuja}, biburl = {https://www.bibsonomy.org/bibtex/2086a03fda5d8c9f3e62972dcdd3ff048/thesaiorg}, interhash = {4a5f9dc4a14a0cebb7d863e00205ac84}, intrahash = {086a03fda5d8c9f3e62972dcdd3ff048}, journal = {International Journal of Advanced Computer Science and Applications(IJACSA)}, keywords = {Access Authentication; Authorization. Control; Services; Web}, number = 6, timestamp = {2014-02-21T08:00:08.000+0100}, title = {{An Authorization Mechanism for Access Control of Resources in the Web Services Paradigm}}, url = {http://ijacsa.thesai.org/}, volume = 2, year = 2011 }