%P 1341-1346
%V 3
%A M.Q. Saleem
%A J. Jaafar
%A M.F. Hassan
%T Model driven security frameworks for addressing security problems of service oriented architecture
%C Kuala Lumpur
%L scholars1029
%J Proceedings 2010 International Symposium on Information Technology - System Development and Application and Knowledge Society, ITSim'10
%O cited By 9; Conference of 2010 International Symposium on Information Technology, ITSim'10 ; Conference Date: 15 June 2010 Through 17 June 2010; Conference Code:81915
%R 10.1109/ITSIM.2010.5561580
%D 2010
%K Model driven architectures; Model driven security; Model driven software development; Organizational levels; Research groups; Secure software; Security goals; Security problems; Security requirements; Security risks; Technical levels; Web Services technologies; Work-flows; Working styles, Information services; Information technology; Network security; Software architecture; Software design; Web services, Service oriented architecture (SOA)
%X Service Oriented Architecture (SOA) based on Web Services technology gained popularity because business work flows can easily be executed as an orchestration of Web Services. These Web Services are independently developed and may be internal or external. With increase in connectivity among the Web Services, security risks rise exponentially. Moreover the security requirements are not defined at organizational level rather they left until the technical level. Many security problems related to SOA applications are highlighted by different authors which if not properly managed might have serious consequences. Various Model Driven Security Frameworks are presented by different research groups to overcome the security problems of SOA based applications. In this paper we have highlighted the security problems for SOA based applications and few Model Driven Security Frameworks are presented to develop secure software applications; their working style and security goals are also discussed in the course of paper. © 2010 IEEE.