Secure Sessions for Web Services

K. Bhargavan, R.J. Corin, C. Fournet, A.D. Gordon

    Research output: Chapter in Book/Report/Conference proceedingConference contributionAcademicpeer-review

    12 Citations (Scopus)
    83 Downloads (Pure)

    Abstract

    WS-Security provides basic means to secure SOAP traffic, one envelope at a time. For typical web services, however, using WS-Security independently for each message is rather inefficient; besides, it is often important to secure the integrity of a whole session, as well as each message. To this end, recent specifications provide further SOAP-level mechanisms: WS-SecureConversation introduces security contexts, which can be used to secure sessions between two parties. WS-Trust specifies how security contexts are issued and obtained. We develop a semantics for the main mechanisms of WS-Trust and WS-SecureConversation, expressed as a library for TulaFale, a formal scripting language for security protocols. We model typical protocols relying on these mechanisms, and automatically prove their main security properties. We also informally discuss some limitations of these specifications.
    Original languageUndefined
    Title of host publicationACM Workshop on Secure Web Services (SWS)
    Place of PublicationNew York
    PublisherACM Press
    Pages56-66
    Number of pages11
    ISBN (Print)1-58113-973-X
    DOIs
    Publication statusPublished - Oct 2004
    EventWorkshop on Secure Web Service, SWS 2004 - Fairfax, United States
    Duration: 29 Oct 200429 Oct 2004

    Publication series

    Name
    PublisherACM Press

    Conference

    ConferenceWorkshop on Secure Web Service, SWS 2004
    Abbreviated titleSWS
    CountryUnited States
    CityFairfax
    Period29/10/0429/10/04

    Keywords

    • METIS-220416
    • SCS-Cybersecurity
    • EWI-759
    • IR-48701

    Cite this

    Bhargavan, K., Corin, R. J., Fournet, C., & Gordon, A. D. (2004). Secure Sessions for Web Services. In ACM Workshop on Secure Web Services (SWS) (pp. 56-66). New York: ACM Press. https://doi.org/10.1145/1111348.1111355