| SOA is an enterprise software application interation architecture which is featured with platforminteroperability, component loose coupling and dynamic compostion, so it has been widely appliedand practiced. With the technology development and popularization of SOA applications, the securityissues of Web services based on SOA have become increasingly prominent. The security of SOAPmessage is of great importance to Web service security.Currently the transmission of SOAP messages is mainly rely on the WS-Security standard,while,the WS-Security only gives an abstract framework to achieve security goals. As for how to use themto achieve the goal of SOA security, both theoretical and technical practices are facing enormouschallenges. It has become a hot spot how to ensure the safety of services for scholars and researchinstitutions at home and abroad.This article describes the Web services platform architecture, and the SOAP messages WS-Securitystandard in heterogeneous transport. From the perspective of SOAP message security, it analyzes theshortcomings of the WS-Security standard, put forward that the SOAP message under the existingWS-Security SOAP message transport standard will be suffered XML injection attacks and overencrypted attacks and other Web attacks.Therefore, this paper designs a new SOAP message securitytransport mechanism which adds the SOAP Validation node into the existing Web services securitytransport framework based on the WS standards. Finally, this experimental design experiments todemonstrate the SOAP Validation security transport mechanism can truly detect the the XMLinjection attacks and over encrypted attacks, the experimental results show that mechanism can reallyimprove the security of SOAP messages. It also proves the feasibility and reliability of themechanism. |
PDF Full Text Request