A Framework to Support Process Instance Security in SOA

• Main Authors: Chao-Chen Chiang, 蔣招政
• Other Authors: Gwan-Hwan Hwang
• Format: Others
• Language: zh-TW
• Published: 2009
• Online Access: http://ndltd.ncl.edu.tw/handle/u8cw93

碩士 === 國立臺灣師範大學 === 資訊工程研究所 === 97 === Web Service is a programmable entity provided the specific function and will also be available use of different common Internet standards (such as XML and HTTP) to access the system. Web Service mainly relies on XML and other broad acceptance Internet standards to solve many problems that previously can not be solved, and then establish the infrastructure to support interoperability of applications. BPEL(Business Process Execution Language) is a execution language standard and play a orchestrator between services, and describes the process control, such as branch, loop, parallel processing, information processing and related, the exception handling. BPEL is a business process approach using XML to describe, and generate new solutions by linking different web services together. This combination of these ways compare to the methods programming the services together, the former is significantly more flexible and easier to manage. Users can make use of different combinations to rapid change or create new solutions. BPEL for the process instance fault tolerance is still limited and Security handling is base on WS-Security, however, WS-Security is only designed for the Web Service can not provide a full range of features. To conquer these problems and we propose a framework to achieve process instance fault tolerance, process authentication, process confidentiality, process message integrity, process non-repudiation function.