CFP last date
22 April 2024
Reseach Article

An Enhanced Multi-Layered Security Framework for Context-Aware Mobile Web Services

by P. Joseph Charles, S. Britto Ramesh Kumar
International Journal of Computer Applications
Foundation of Computer Science (FCS), NY, USA
Volume 146 - Number 15
Year of Publication: 2016
Authors: P. Joseph Charles, S. Britto Ramesh Kumar
10.5120/ijca2016910862

P. Joseph Charles, S. Britto Ramesh Kumar . An Enhanced Multi-Layered Security Framework for Context-Aware Mobile Web Services. International Journal of Computer Applications. 146, 15 ( Jul 2016), 1-4. DOI=10.5120/ijca2016910862

@article{ 10.5120/ijca2016910862,
author = { P. Joseph Charles, S. Britto Ramesh Kumar },
title = { An Enhanced Multi-Layered Security Framework for Context-Aware Mobile Web Services },
journal = { International Journal of Computer Applications },
issue_date = { Jul 2016 },
volume = { 146 },
number = { 15 },
month = { Jul },
year = { 2016 },
issn = { 0975-8887 },
pages = { 1-4 },
numpages = {9},
url = { https://ijcaonline.org/archives/volume146/number15/25471-2016910862/ },
doi = { 10.5120/ijca2016910862 },
publisher = {Foundation of Computer Science (FCS), NY, USA},
address = {New York, USA}
}
%0 Journal Article
%1 2024-02-06T23:50:31.292321+05:30
%A P. Joseph Charles
%A S. Britto Ramesh Kumar
%T An Enhanced Multi-Layered Security Framework for Context-Aware Mobile Web Services
%J International Journal of Computer Applications
%@ 0975-8887
%V 146
%N 15
%P 1-4
%D 2016
%I Foundation of Computer Science (FCS), NY, USA
Abstract

People seeking medical attention go in search of medical centers and specialists. For them time is vital as they search for resources, the information should be available with minimum latency. With the advent of wearable computing and ubiquitous computing Context -Aware Web services can be available with much ease, it enables users to retrieve information with relation to their context. While providing several benefits, although web services technology has been facing serious threats like prefix hijacking and interception in the Internet due to a man in-the-middle attack which compromises privacy of the user. The objective of this research work is to provide a secure framework for Context aware web services using access control mechanisms. It was found web services are prone to data theft and malicious attacks, Access Control Mechanism is introduced in the framework to provide a secured architecture where the privacy of the person accessing the web service will be preserved. The proposed architecture provides an end-to-end security by accomplishing the security properties such as user authentication, authorization of web services, message confidentiality, data integrity and non repudiation. Hence, there is a need that arises to design a security system for context-aware web services with the support of end-to-end security in business services between the service providers and service requesters thus providing a secure user experience

References
  1. Timothy E. Levin, Cynthia E. Irvine, Clark Weissman and Thuy D. Nguyen “Analysis of Three Multilevel Security Architectures”,CSAW’07,Fairfax, Virginia, USA, ACM, November 2007.
  2. SHENHaibo, HONG Fan, A Context-Aware Role-BasedAccess Control Model for Web Services”, Proceedings of the2005 IEEE International Conference on e-Business Engineering(ICEBE’05), 5 IEEE, 2006.
  3. Chaowang Shang, Zongkai Yang, Qingtang Liu, ChenglingZhao, A Context Based Dynamic Access Control Model forWeb Service”, International Conference on Embedded And Ubiquitous Computing, IEEE, 2008.
  4. Kenya Nishiki and Erika Tanaka, “Authentication and AccessControl Agent Framework for Context-Aware Sannella, M. J. 1994 Constraint Satisfaction and Services”, Proceedings of the Symposium on Applications and the Internet Workshops, IEEE, 2005.
  5. Forman, G. 2003. An extensive empirical study of Kuyoro Shade O.Ibikunle Frank Awodele O. and Okolie Samuel O.”Security Issues in Web Services”, IJCSNS International Journal of Computer Science and Network Security, Vol.12 No.1, 2012.
  6. SomeshJha, Mahesh Tripunitara, Qihua Wang, and William H. Winsborough, “Toward Formal Verification of Role-Based Access Control Policies”, IEEE Transactions on Dependable and Secure Computing, Vol. 5, No. 4, 2008.
  7. Ravi S. Sandhu, Edward J. Coyne, Hal L. Feinstein and Charles E. Youman, “Role-Based Access Control Models”, IEEE Communications Magazine, Vol. 29, No. 2, pp. 38-47, 1994.
  8. G. H. Hwang, Y. H.Chang and T. K.Chang, “An Operational Model and Language Support for Securing Web Services”, IEEE International Conference on Web Services (ICWS), 2007.
  9. Yanjiang Yang, Robert H. DengandFengBao, “A Practical Password-Based Two-Server Authentication and Key Exchange System”, IEEE Transactions on Dependable and Secure Computing, Vol. 3, No. 2, April-June2006.
  10. Richard Millham, “Creating Context Aware and AdaptableWebServices within a Security Framework”, IEEE, 2013
  11. Joseph Charles P, Britto Ramesh Kumar S, “Design of a Secure Architecture for Context Aware Web Services using Access control mechanism”, IEEE, 2014.
  12. Liu Hong-yue, Deng Miao-lei, Yang Weidong, “A Context Aware Fine-grained Access Control Model”, InternationalConference on Computer Science and Service System, IEEE,2012.
Index Terms

Computer Science
Information Sciences

Keywords

Web Services Web engineering Context-aware access control security privacy.