Towards an information security framework for service-oriented architecture

DSpace/Manakin Repository

Show simple item record

dc.contributor.author Chetty, Jacqui
dc.contributor.author Coetzee, Marijke
dc.date.accessioned 2012-11-14T19:28:39Z
dc.date.available 2012-11-14T19:28:39Z
dc.date.issued 2010
dc.identifier.citation Chetty, J. & Coetzee, M. 2010. Towards an information security framework for service-oriented architecture. 2010 Information Security for South Africa (ISSA 2010) Conference, 2-4 August 2010, Sandton Convention Centre, Sandton, South Africa. en_US
dc.identifier.isbn 978-1-4244-5494-5
dc.identifier.uri http://hdl.handle.net/10210/8206
dc.description.abstract Service-oriented architectures support distributed heterogeneous environments where business transactions occur among loosely connected services. Ensuring a secure infrastructure for this environment is challenging. There are currently various approaches to addressing information security, each with its own set of benefits and difficulties. Additionally, organisations can adopt vendor-based information security frameworks to assist them in implementing adequate information security controls. Unfortunately, there is no standard information security framework that has been adopted for service-oriented architectures. This paper analyses the information security challenges faced by service-oriented architectures. Information security components for a service-oriented architecture environment are proposed. These components were developed collectively from serviceoriented architecture design principles, the ISO/IEC 27002:2005 standard, and other service-oriented architecture governance frameworks. The information security framework can assist organisations in determining information security controls for service-oriented architectures, en_US
dc.language.iso en en_US
dc.publisher IEEE en_US
dc.rights © IEEE. 2010. Available online at http://icsa.cs.up.ac.za/issa/2010/Proceedings.htm. en_US
dc.subject Computer security en_US
dc.subject Service-oriented architecture en_US
dc.subject Information security framework en_US
dc.title Towards an information security framework for service-oriented architecture en_US
dc.type Article en_US

Files in this item

This item appears in the following Collection(s)

Show simple item record

Search UJDigispace


Advanced Search

Browse

My Account