Abstract: An important aspect for the acceptance of Service-Oriented Architectures is having convenient ways to help designers build secure applications. Numerous standards define ways to apply security in web services. However, these standards are rather complex and sometimes overlap, which makes them hard to use and may produce inconsistencies. Representing them as patterns makes them easier to understand, to compare to other patterns, to discover inconsistencies, and to use them to build secure web services applications. Security patterns abstract the key aspects of a security mechanism and can thus be applied by non-experts. We survey here our work on security patterns for web services and their standards and we put them in perspective with respect to each other and to more fundamental patterns. We also consider other patterns for web services security. All the patterns described here have been previously published, we only show here one of them in detail as an illustration of our style for writing patterns. Our main purpose here is to enumerate them, show their use, and show how they relate to each other.
Keywords: web services security; web services standards; security patterns; secure distributed systems; secure SOA; misuse patterns
Export to BibTeX
MDPI and ACS Style
Fernandez, E.B.; Ajaj, O.; Buckley, I.; Delessy-Gassant, N.; Hashizume, K.; Larrondo-Petrie, M.M. A Survey of Patterns for Web Services Security and Reliability Standards. Future Internet 2012, 4, 430-450.
Fernandez EB, Ajaj O, Buckley I, Delessy-Gassant N, Hashizume K, Larrondo-Petrie MM. A Survey of Patterns for Web Services Security and Reliability Standards. Future Internet. 2012; 4(2):430-450.
Fernandez, Eduardo B.; Ajaj, Ola; Buckley, Ingrid; Delessy-Gassant, Nelly; Hashizume, Keiko; Larrondo-Petrie, Maria M. 2012. "A Survey of Patterns for Web Services Security and Reliability Standards." Future Internet 4, no. 2: 430-450.