Token based novel approach to web service security

dc.authorid0000-0003-4256-9388en_US
dc.contributor.authorCinci, Mehmet
dc.contributor.authorCerası, Ceren Çubukçu
dc.contributor.authorGültekin, Muaz
dc.date.accessioned2024-07-12T20:58:10Z
dc.date.available2024-07-12T20:58:10Z
dc.date.issued2022en_US
dc.departmentFakülteler, Mühendislik ve Doğa Bilimleri Fakültesi, Bilgisayar Mühendisliği Bölümüen_US
dc.description.abstractWeb services and APIs (Application Programming Interface) are published publicly on the internet or privately for companies by their very nature. Especially many web services are published openly. This leads to security vulnerabilities. Moreover, since web services and APIs are accessible by everyone, a substantial amount of malicious requests are made to web services and APIs. This situation may cause unnecessary requests to the servers running the web services and consume resources as a consequence. Again, this leads to a security vulnerability. In this study, we propose a TOKEN (Digital Sign) based model that encrypts the SOAP (Simple Object Access Protocol) Envelope message against such situations. To that end, we created a new model as an alternative to the model used in many public projects as an alternative solution. Based on the results we have obtained; we have seen that the model we propose is much faster and more flexible than the classical WS-Security (Web Service Security) solutions without compromising security.en_US
dc.identifier.citationCinci, M., Cerası, C.C. and Gültekin, M. (2022). Token based novel approach to web service security. Proc. of the International Conference on Electrical, Computer and Energy Technologies (ICECET), p.1-6.en_US
dc.identifier.doi10.1109/ICECET55527.2022.9872557
dc.identifier.endpage6en_US
dc.identifier.isbn9.78167E+12
dc.identifier.scopus2-s2.0-85138901637en_US
dc.identifier.startpage1en_US
dc.identifier.urihttps://doi.prg/10.1109/ICECET55527.2022.9872557
dc.identifier.urihttps://hdl.handle.net/20.500.12415/3148
dc.indekslendigikaynakScopus
dc.institutionauthorCinci, Mehmet
dc.language.isoenen_US
dc.relation.ispartofProc. of the International Conference on Electrical, Computer and Energy Technologies (ICECET)en_US
dc.relation.publicationcategoryUluslararası Konferans Öğesien_US
dc.rightsinfo:eu-repo/semantics/openAccessen_US
dc.snmzKY08603
dc.subjectWeb service securityen_US
dc.subjectDigitial signen_US
dc.subjectXAdESen_US
dc.subjectSOAPen_US
dc.subjectWSS-Prefixen_US
dc.titleToken based novel approach to web service securityen_US
dc.typeConference Object
dspace.entity.typePublication

Dosyalar