SOA Securing the SOA - Service Oriented Architecture (SOA)

What is the process of securing the SOA?

Securing Service Oriented Architecture (SOA) is an important act to make sure that all the services and applications run safely. For different reasons like service exposures and loose coupling of components, it is important to have a secured SOA to prevent from exposed services and unexpected attacks.

SOA Attacks

Let’s get protected from different types of attacks to which SOA environment may become unprotected. It will be more incase if it was implemented with using web service technology. People across the globe, uses both SOA and web services to get result oriented and open to attacks. Usually most of the attacks happen on the application service layer of SAO and web services, most since web services communicate using XML and soap messages.

Here’s the list of attacks in SOA:

  • Injection Attacks: This attack occurs when no validation on the user input is performed and no separation is done between user input and application. For example, SQL injection, XML injection etc.
  • Schema Poisoning Attack: This attack when occurs, modifies, replaces or even damages XML schemas that provides the structure of XML documents.
  • Denial Of Service Attacks (DoS): This attack when occurs, do not change the service or its behaviour but can block the use of the service.

Research Contributions

Here are some main contributions:
  • Providing integrity for SOA that provides enough conditions for securing data integrity.
  • Implementing testbed for SOA and setting environment of specification based IDS.
  • Proposing intrusion detection system for SOA networks that are capable of detecting intrusions affecting behaviour of services.
  • Recommending SOA testbed where SOAP messages can be monitored.

All rights reserved © 2020 Wisdom IT Services India Pvt. Ltd Protection Status

Service Oriented Architecture (SOA) Topics