Security for Web Services
Web Services have the potential to allow for standardized, interoperable
services.However, the security implementation for web services still lags
behind what is needed for true distributed systems.Authentication is
in embryonic stage with basic username and password support, and support
for more advanced public-key authentication just emerging.
The
Globus Toolkit has produced a richly-
featured security infrastructure for Grid computing with support for public
key authentication, delegation, and distributed attribute gathering and
access control decisions. This infrastructure is based on the
Apache Axis framework that is
utilized by many Web Services. The goal of this project is to re-factor the
Globus security infrastructure such that it can be easily utilized for plain
web services.
Project Staff:
Current Project Documents and HOWTOs:
This project is funded under the NCSA NSF core program plan.
