Invention Grant
US08346929B1 System and method for generating secure Web service architectures using a Web Services security assessment methodology
有权
使用Web服务安全评估方法生成安全Web服务架构的系统和方法
- Patent Title: System and method for generating secure Web service architectures using a Web Services security assessment methodology
- Patent Title (中): 使用Web服务安全评估方法生成安全Web服务架构的系统和方法
-
Application No.: US10657992Application Date: 2003-09-09
-
Publication No.: US08346929B1Publication Date: 2013-01-01
- Inventor: Ray Y Lai
- Applicant: Ray Y Lai
- Applicant Address: US CA Redwood City
- Assignee: Oracle America, Inc.
- Current Assignee: Oracle America, Inc.
- Current Assignee Address: US CA Redwood City
- Agency: Meyertons, Hood, Kivlin, Kowert & Goetzel, P.C.
- Agent Robert C. Kowert
- Main IPC: G06F15/173
- IPC: G06F15/173
Abstract:
System and method for designing and implementing secure Web Services according to a Web Services Security Assessment structured methodology and design patterns. Lifecycles of the Web Services Security Assessment structured methodology may include, but are not limited to: vision and strategy, architecture design, development, integration, and deployment. In one embodiment, security components may be identified based on one or more use case requirements. Web Services objects that need to be protected may be identified. The object relationship for security protection may be defined, and associated trust domains, security policy and strategy and threat profiles may be identified. Protection schemes for these Web Services objects may be generated. Web Services security design patterns may be applied. One embodiment may be implemented as a secure Web Services architecture design mechanism that may receive Web Services requirements as input and assist a user in designing and generating a secure Web Services architecture.
Information query
