Abstract

Firewalls have been designed as a major component to protect a network or a server from being attacked. However, due to their emphasis on packet filtering rather than verifying user permissions and examining packet contents, conventional firewalls are not suitable for protecting service-oriented systems from unauthorised service invocations. In this paper, we present a formal XML firewall security model for service-oriented systems, which supports user authentication and role-based user authorisation according to policy rules that can be updated dynamically. The formal model consists of two major components, namely the application model and the XML firewall model, which are designed compositionally using coloured Petri nets. We analyse both the application model and the XML firewall model using an existing Petri net tool, and demonstrate how key properties of the formal models can be verified, and how design errors can be detected and corrected at an early design stage.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Modeling of an interoperability test bench for the on-board system of a train control system based on Colored Petri Nets
L Yuan ... K Li
-
L Yuan, et. al.L Yuan ... K Li
04 Aug 2010
A General Model Checking Method of Electronic Transaction Protocols Using Colored Petri Nets
Meng Xu ... Jin Wei
-
Meng Xu, et. al.Meng Xu ... Jin Wei
01 Jan 2009
Formal specification and state space analysis of an operational planning process
Brice Mitchell ... Lars Michael Kristensen
International Journal on Software Tools for Technology Transfer | VOL. 9
Brice Mitchell, et. al.Brice Mitchell ... Lars Michael Kristensen
22 Feb 2007
Advanced Saturation-based Model Checking of Well-formed Coloured Petri Nets
András Vörös ... Attila Jámbor
Periodica Polytechnica Electrical Engineering | VOL. 58
András Vörös, et. al.András Vörös ... Attila Jámbor
01 Jan 2014
View more papers

More From: International Journal of Security and Networks

Paper Title
Journal
Date
Author
LR-SDP: lightweight privacy preservation approach for distributed mobile devices in IoT environment
Vipin Vijayachandran ... Suchithra Ramachandran Nair
International Journal of Security and Networks | VOL. 19
Vipin Vijayachandran, et. al.Vipin Vijayachandran ... Suchithra Ramachandran Nair
01 Jan 2024
A social network security user recommendation algorithm based on community user emotions
Huajin Liu ... Chunhua Ju
International Journal of Security and Networks | VOL. -
Huajin Liu, et. al.Huajin Liu ... Chunhua Ju
01 Jan 2024
A new method of large integer prime decomposition for network public key cryptosystem
Wenbo Sun ... Chenguang Bai
International Journal of Security and Networks | VOL. 19
Wenbo Sun, et. al.Wenbo Sun ... Chenguang Bai
01 Jan 2024
Safety monitoring system for tourist scenic spots based on crowd scene type recognition
Qinqin Dong
International Journal of Security and Networks | VOL. 19
Qinqin DongQinqin Dong
01 Jan 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.