EPICS: A Framework for Enforcing Security Policies in Composite Web Services

Rohit Ranchal, Bharat Bhargava, Pelin Angin, Lotfi Ben Othmane
2018 IEEE Transactions on Services Computing  
With advances in cloud computing and the emergence of service marketplaces, the popularity of composite services marks a paradigm shift from single-domain monolithic systems to cross-domain distributed services, which raises important privacy and security concerns. Access control becomes a challenge in such systems because authentication, authorization and data disclosure may take place across endpoints that are not known to clients. The clients lack options for specifying policies to control
more » ... e sharing of their data and have to rely on service providers which provide limited selection of security and privacy preferences. This lack of awareness and loss of control over data sharing increases threats to a client's data and diminishes trust in these systems. Disciplines Electrical and Computer Engineering
doi:10.1109/tsc.2018.2797277 fatcat:3x2qqm7f4vgrxk3sgwhnnceqym