ENGINEERING
and TECHNOLOGY RESEARCH

With the widely using of Web Service, its security is more and more important. For these requirements, series specifications are put forward by W3C. Based on studying these criterions, a web service security disposal method is provided in this paper, which uses security mechanism of transport layer and application layer. This method constructs point to point and port to port configuration web service security model which is based on WS-Security, WS-Policy, WS-Trust, WS-Privacy, WS-Secure Conversation, WS-Federation, WS-Authorization…etc. At last this model is integrated with application system security model and used to realize access control.

Web service, Security, Model