Hecate, Managing Authorization with RESTful XML

Kurzanzeige
dc.contributor.authorGraf, Sebastian
dc.contributor.authorZholudev, Vyacheslavdeu
dc.contributor.authorLewandowski, Lukas
dc.contributor.authorWaldvogel, Marcel
dc.date.accessioned2011-05-12T09:34:55Zdeu
dc.date.available2011-05-12T09:34:55Zdeu
dc.date.issued2011
dc.description.abstractThe potentials of REST offers new ways for communications between louse coupled entities featured through the Web of Things [12]. The binding of the disjunct components of this architecture creates security issues, such as the centralized authorization techniques respecting the independence of the underlying entities. This results in the question how authorization is performed respecting the flexibility of REST without any knowledge about the underlying resources. Nevertheless, possible knowledge about these resources should enable the authorization workflow to offer finer-granular permissions on substructures of the resources. With our new approach - we named Hecate- we offer a framework to assure simplified handling while keeping the potentials and flexibility of REST . We have designed an architecture based on XML with a flexible authorization mechanism on the one hand and optional resource-awareness on the other hand. The flexibility within the authorization work-flow bases on permission sets respecting the HTTP- verbs. Additional in-depth knowledge of the entity option- ally extends these permissions with resource-aware filters. Hecate offers not only great benefits because of its flexibility, but also because of the optional extensibility proved within the two reference implementations. With Hecate, we show that a centralized authorization mechanism combining independence and optional resource-based filtering extends the flexibility of REST rather than restricting it.eng
dc.description.versionpublished
dc.identifier.citationWS-REST '11 : Proceedings of the Second International Workshop on RESTful Design, New York : ACM, 2011. - ISBN 978-1-4503-0623-2deu
dc.identifier.doi10.1145/1967428.1967442
dc.identifier.ppn343610841deu
dc.identifier.urihttp://kops.uni-konstanz.de/handle/123456789/12623
dc.language.isoengdeu
dc.legacy.dateIssued2011-05-12deu
dc.rightsterms-of-usedeu
dc.rights.urihttps://rightsstatements.org/page/InC/1.0/deu
dc.subjectREST XML Authorizationdeu
dc.subject.ddc004deu
dc.subject.gndREST <Informatik> XML Autorisierungdeu
dc.titleHecate, Managing Authorization with RESTful XMLeng
dc.typeINPROCEEDINGSdeu
dspace.entity.typePublication
kops.citation.bibtex
@inproceedings{Graf2011Hecat-12623,
  year={2011},
  doi={10.1145/1967428.1967442},
  title={Hecate, Managing Authorization with RESTful XML},
  isbn={978-1-4503-0623-2},
  publisher={ACM Press},
  address={New York, New York, USA},
  booktitle={Proceedings of the Second International Workshop on RESTful Design - WS-REST '11},
  pages={51--58},
  author={Graf, Sebastian and Zholudev, Vyacheslav and Lewandowski, Lukas and Waldvogel, Marcel},
  note={Link zur Originalveröffentlichung: http://ws-rest.org/2011/proc/a10-graf.pdf}
}
kops.citation.iso690GRAF, Sebastian, Vyacheslav ZHOLUDEV, Lukas LEWANDOWSKI, Marcel WALDVOGEL, 2011. Hecate, Managing Authorization with RESTful XML. Second International Workshop on RESTful Design - WS-REST '11. Hyderabad, India, 28. März 2011 - 28. März 2011. In: Proceedings of the Second International Workshop on RESTful Design - WS-REST '11. New York, New York, USA: ACM Press, 2011, pp. 51-58. ISBN 978-1-4503-0623-2. Available under: doi: 10.1145/1967428.1967442deu
kops.citation.iso690GRAF, Sebastian, Vyacheslav ZHOLUDEV, Lukas LEWANDOWSKI, Marcel WALDVOGEL, 2011. Hecate, Managing Authorization with RESTful XML. Second International Workshop on RESTful Design - WS-REST '11. Hyderabad, India, Mar 28, 2011 - Mar 28, 2011. In: Proceedings of the Second International Workshop on RESTful Design - WS-REST '11. New York, New York, USA: ACM Press, 2011, pp. 51-58. ISBN 978-1-4503-0623-2. Available under: doi: 10.1145/1967428.1967442eng
kops.citation.rdf
<rdf:RDF
    xmlns:dcterms="http://purl.org/dc/terms/"
    xmlns:dc="http://purl.org/dc/elements/1.1/"
    xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
    xmlns:bibo="http://purl.org/ontology/bibo/"
    xmlns:dspace="http://digital-repositories.org/ontologies/dspace/0.1.0#"
    xmlns:foaf="http://xmlns.com/foaf/0.1/"
    xmlns:void="http://rdfs.org/ns/void#"
    xmlns:xsd="http://www.w3.org/2001/XMLSchema#" > 
  <rdf:Description rdf:about="https://kops.uni-konstanz.de/server/rdf/resource/123456789/12623">
    <dc:contributor>Lewandowski, Lukas</dc:contributor>
    <dcterms:abstract xml:lang="eng">The potentials of REST offers new ways for communications between louse coupled entities featured through the Web of Things [12]. The binding of the disjunct components of this architecture creates security issues, such as the centralized authorization techniques respecting the independence of the underlying entities. This results in the question how authorization is performed respecting the flexibility of REST without any knowledge about the underlying resources. Nevertheless, possible knowledge about these resources should enable the authorization workflow to offer finer-granular permissions on substructures of the resources. With our new approach - we named Hecate- we offer a framework to assure simplified handling while keeping the potentials and flexibility of REST . We have designed an architecture based on XML with a flexible authorization mechanism on the one hand and optional resource-awareness on the other hand. The flexibility within the authorization work-flow bases on permission sets respecting the HTTP- verbs. Additional in-depth knowledge of the entity option- ally extends these permissions with resource-aware filters. Hecate offers not only great benefits because of its flexibility, but also because of the optional extensibility proved within the two reference implementations. With Hecate, we show that a centralized authorization mechanism combining independence and optional resource-based filtering extends the flexibility of REST rather than restricting it.</dcterms:abstract>
    <dcterms:title>Hecate, Managing Authorization with RESTful XML</dcterms:title>
    <dc:language>eng</dc:language>
    <dspace:hasBitstream rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/12623/1/Hecate_Graf.pdf"/>
    <dc:contributor>Zholudev, Vyacheslav</dc:contributor>
    <dspace:isPartOfCollection rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <dc:creator>Lewandowski, Lukas</dc:creator>
    <dc:creator>Zholudev, Vyacheslav</dc:creator>
    <dcterms:available rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2011-05-12T09:34:55Z</dcterms:available>
    <dc:contributor>Waldvogel, Marcel</dc:contributor>
    <dcterms:hasPart rdf:resource="https://kops.uni-konstanz.de/bitstream/123456789/12623/1/Hecate_Graf.pdf"/>
    <dc:contributor>Graf, Sebastian</dc:contributor>
    <dcterms:issued>2011</dcterms:issued>
    <bibo:uri rdf:resource="http://kops.uni-konstanz.de/handle/123456789/12623"/>
    <dc:date rdf:datatype="http://www.w3.org/2001/XMLSchema#dateTime">2011-05-12T09:34:55Z</dc:date>
    <void:sparqlEndpoint rdf:resource="http://localhost/fuseki/dspace/sparql"/>
    <dcterms:isPartOf rdf:resource="https://kops.uni-konstanz.de/server/rdf/resource/123456789/36"/>
    <foaf:homepage rdf:resource="http://localhost:8080/"/>
    <dc:creator>Graf, Sebastian</dc:creator>
    <dc:creator>Waldvogel, Marcel</dc:creator>
    <dc:rights>terms-of-use</dc:rights>
    <dcterms:rights rdf:resource="https://rightsstatements.org/page/InC/1.0/"/>
    <dcterms:bibliographicCitation>WS-REST '11 : Proceedings of the Second International Workshop on RESTful Design, New York : ACM, 2011. - ISBN 978-1-4503-0623-2</dcterms:bibliographicCitation>
  </rdf:Description>
</rdf:RDF>
kops.conferencefieldSecond International Workshop on RESTful Design - WS-REST '11, 28. März 2011 - 28. März 2011, Hyderabad, Indiadeu
kops.date.conferenceEnd2011-03-28
kops.date.conferenceStart2011-03-28
kops.description.commentLink zur Originalveröffentlichung: http://ws-rest.org/2011/proc/a10-graf.pdfdeu
kops.description.openAccessopenaccessgreen
kops.flag.knbibliographytrue
kops.identifier.nbnurn:nbn:de:bsz:352-126237deu
kops.location.conferenceHyderabad, India
kops.sourcefield<i>Proceedings of the Second International Workshop on RESTful Design - WS-REST '11</i>. New York, New York, USA: ACM Press, 2011, pp. 51-58. ISBN 978-1-4503-0623-2. Available under: doi: 10.1145/1967428.1967442deu
kops.sourcefield.plainProceedings of the Second International Workshop on RESTful Design - WS-REST '11. New York, New York, USA: ACM Press, 2011, pp. 51-58. ISBN 978-1-4503-0623-2. Available under: doi: 10.1145/1967428.1967442deu
kops.sourcefield.plainProceedings of the Second International Workshop on RESTful Design - WS-REST '11. New York, New York, USA: ACM Press, 2011, pp. 51-58. ISBN 978-1-4503-0623-2. Available under: doi: 10.1145/1967428.1967442eng
kops.submitter.emailsebastian.graf@uni-konstanz.dedeu
kops.title.conferenceSecond International Workshop on RESTful Design - WS-REST '11
relation.isAuthorOfPublication8ca956e4-3c39-4c6c-8abf-3ab945161714
relation.isAuthorOfPublicationad058314-8a22-43a4-ab70-fe83a4e18a84
relation.isAuthorOfPublication84e1ce62-b720-46ef-b156-ce00a632dd4f
relation.isAuthorOfPublication.latestForDiscovery8ca956e4-3c39-4c6c-8abf-3ab945161714
source.bibliographicInfo.fromPage51
source.bibliographicInfo.toPage58
source.identifier.isbn978-1-4503-0623-2
source.publisherACM Press
source.publisher.locationNew York, New York, USA
source.titleProceedings of the Second International Workshop on RESTful Design - WS-REST '11

Dateien

Originalbündel

Gerade angezeigt 1 - 1 von 1
Vorschaubild nicht verfügbar
Name:
Hecate_Graf.pdf
Größe:
411.65 KB
Format:
Adobe Portable Document Format
Hecate_Graf.pdf
Hecate_Graf.pdfGröße: 411.65 KBDownloads: 1089

Lizenzbündel

Gerade angezeigt 1 - 1 von 1
Vorschaubild nicht verfügbar
Name:
license.txt
Größe:
1.92 KB
Format:
Plain Text
Beschreibung:
license.txt
license.txtGröße: 1.92 KBDownloads: 0

Sammlungen

Informatik und Informationswissenschaft: Publikationen