Publikation:

Hecate, Managing Authorization with RESTful XML

Lade...
Vorschaubild

Dateien

Hecate_Graf.pdf
Hecate_Graf.pdfGröße: 411.65 KBDownloads: 962

Datum

2011

Autor:innen

Zholudev, Vyacheslav
Waldvogel, Marcel

Herausgeber:innen

Kontakt

ISSN der Zeitschrift

Electronic ISSN

ISBN

Bibliografische Daten

Verlag

Schriftenreihe

Auflagebezeichnung

ArXiv-ID

Internationale Patentnummer

Angaben zur Forschungsförderung

Projekt

Open Access-Veröffentlichung
Open Access Green
Core Facility der Universität Konstanz

Gesperrt bis

Titel in einer weiteren Sprache

Publikationstyp
Beitrag zu einem Konferenzband
Publikationsstatus
Published

Erschienen in

Proceedings of the Second International Workshop on RESTful Design - WS-REST '11. New York, New York, USA: ACM Press, 2011, pp. 51-58. ISBN 978-1-4503-0623-2. Available under: doi: 10.1145/1967428.1967442

Zusammenfassung

The potentials of REST offers new ways for communications between louse coupled entities featured through the Web of Things [12]. The binding of the disjunct components of this architecture creates security issues, such as the centralized authorization techniques respecting the independence of the underlying entities. This results in the question how authorization is performed respecting the flexibility of REST without any knowledge about the underlying resources. Nevertheless, possible knowledge about these resources should enable the authorization workflow to offer finer-granular permissions on substructures of the resources. With our new approach - we named Hecate- we offer a framework to assure simplified handling while keeping the potentials and flexibility of REST . We have designed an architecture based on XML with a flexible authorization mechanism on the one hand and optional resource-awareness on the other hand. The flexibility within the authorization work-flow bases on permission sets respecting the HTTP- verbs. Additional in-depth knowledge of the entity option- ally extends these permissions with resource-aware filters. Hecate offers not only great benefits because of its flexibility, but also because of the optional extensibility proved within the two reference implementations. With Hecate, we show that a centralized authorization mechanism combining independence and optional resource-based filtering extends the flexibility of REST rather than restricting it.

Zusammenfassung in einer weiteren Sprache

Fachgebiet (DDC)
004 Informatik

Schlagwörter

REST XML Authorization

Konferenz

Second International Workshop on RESTful Design - WS-REST '11, 28. März 2011 - 28. März 2011, Hyderabad, India
Rezension
undefined / . - undefined, undefined

Forschungsvorhaben

Organisationseinheiten

Zeitschriftenheft

Zugehörige Datensätze in KOPS

Zitieren

ISO 690GRAF, Sebastian, Vyacheslav ZHOLUDEV, Lukas LEWANDOWSKI, Marcel WALDVOGEL, 2011. Hecate, Managing Authorization with RESTful XML. Second International Workshop on RESTful Design - WS-REST '11. Hyderabad, India, 28. März 2011 - 28. März 2011. In: Proceedings of the Second International Workshop on RESTful Design - WS-REST '11. New York, New York, USA: ACM Press, 2011, pp. 51-58. ISBN 978-1-4503-0623-2. Available under: doi: 10.1145/1967428.1967442
BibTex
@inproceedings{Graf2011Hecat-12623,
  year={2011},
  doi={10.1145/1967428.1967442},
  title={Hecate, Managing Authorization with RESTful XML},
  isbn={978-1-4503-0623-2},
  publisher={ACM Press},
  address={New York, New York, USA},
  booktitle={Proceedings of the Second International Workshop on RESTful Design - WS-REST '11},
  pages={51--58},
  author={Graf, Sebastian and Zholudev, Vyacheslav and Lewandowski, Lukas and Waldvogel, Marcel},
  note={Link zur Originalveröffentlichung: http://ws-rest.org/2011/proc/a10-graf.pdf}
}
RDF
<rdf:RDF
    xmlns:dcterms="http://purl.org/dc/terms/"
    xmlns:dc="http://purl.org/dc/elements/1.1/"
    xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
    xmlns:bibo="http://purl.org/ontology/bibo/"
    xmlns:dspace="http://digital-repositories.org/ontologies/dspace/0.1.0#"
    xmlns:foaf="http://xmlns.com/foaf/0.1/"
    xmlns:void="http://rdfs.org/ns/void#"
    xmlns:xsd="http://www.w3.org/2001/XMLSchema#" > 
  <rdf:Description rdf:about="https://kops.uni-konstanz.de/server/rdf/resource/123456789/12623">
    <dc:contributor>Lewandowski, Lukas</dc:contributor>
    <dcterms:abstract xml:lang="eng">The potentials of REST offers new ways for communications between louse coupled entities featured through the Web of Things [12]. The binding of the disjunct components of this architecture creates security issues, such as the centralized authorization techniques respecting the independence of the underlying entities. This results in the question how authorization is performed respecting the flexibility of REST without any knowledge about the underlying resources. Nevertheless, possible knowledge about these resources should enable the authorization workflow to offer finer-granular permissions on substructures of the resources. With our new approach - we named Hecate- we offer a framework to assure simplified handling while keeping the potentials and flexibility of REST . We have designed an architecture based on XML with a flexible authorization mechanism on the one hand and optional resource-awareness on the other hand. The flexibility within the authorization work-flow bases on permission sets respecting the HTTP- verbs. Additional in-depth knowledge of the entity option- ally extends these permissions with resource-aware filters. Hecate offers not only great benefits because of its flexibility, but also because of the optional extensibility proved within the two reference implementations. With Hecate, we show that a centralized authorization mechanism combining independence and optional resource-based filtering extends the flexibility of REST rather than restricting it.</dcterms:abstract>
    <dcterms:title>Hecate, Managing Authorization with RESTful XML</dcterms:title>
    <dc:language>eng</dc:language>
    <dspace:hasBitstream rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/12623/1/Hecate_Graf.pdf"/>
    <dc:contributor>Zholudev, Vyacheslav</dc:contributor>
    <dspace:isPartOfCollection rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <dc:creator>Lewandowski, Lukas</dc:creator>
    <dc:creator>Zholudev, Vyacheslav</dc:creator>
    <dcterms:available rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2011-05-12T09:34:55Z</dcterms:available>
    <dc:contributor>Waldvogel, Marcel</dc:contributor>
    <dcterms:hasPart rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/12623/1/Hecate_Graf.pdf"/>
    <dc:contributor>Graf, Sebastian</dc:contributor>
    <dcterms:issued>2011</dcterms:issued>
    <bibo:uri rdf:resource="http://kops.uni-konstanz.de/handle/123456789/12623"/>
    <dc:date rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2011-05-12T09:34:55Z</dc:date>
    <void:sparqlEndpoint rdf:resource="http://localhost/fuseki/dspace/sparql"/>
    <dcterms:isPartOf rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <foaf:homepage rdf:resource="http://localhost:8080/"/>
    <dc:creator>Graf, Sebastian</dc:creator>
    <dc:creator>Waldvogel, Marcel</dc:creator>
    <dc:rights>terms-of-use</dc:rights>
    <dcterms:rights rdf:resource="https://rightsstatements.org/page/InC/1.0/"/>
    <dcterms:bibliographicCitation>WS-REST '11 : Proceedings of the Second International Workshop on RESTful Design, New York : ACM, 2011. - ISBN 978-1-4503-0623-2</dcterms:bibliographicCitation>
  </rdf:Description>
</rdf:RDF>

Interner Vermerk

xmlui.Submission.submit.DescribeStep.inputForms.label.kops_note_fromSubmitter

Kontakt
URL der Originalveröffentl.

Prüfdatum der URL

Prüfungsdatum der Dissertation

Finanzierungsart

Kommentar zur Publikation

Link zur Originalveröffentlichung: http://ws-rest.org/2011/proc/a10-graf.pdf
Allianzlizenz
Corresponding Authors der Uni Konstanz vorhanden
Internationale Co-Autor:innen
Universitätsbibliographie
Ja
Begutachtet
Diese Publikation teilen