Abstract—Securing the communication channels only, cannot guaranty end-to-end security in SOA based systems. To provide complete security, there is need to provide security at application level for SOA based systems. But it is a great challenge for the developer of the web services to implement the security during development of the web services. In this paper we have proposed a model, which will automate the generation of security policies for web services. This system will facilitate and enable the developers of the web services, to generate and implement security policies during the development of the web services, without having intensive knowledge of the security domain and the underlying system. The proposed system will also make the application level experts independent of the security experts for the generation and implementation of the security policy for the development of the web services.

Index Terms—web services architecture (WSA), service oriented software (SOS), service oriented computing (SOC), service oriented architecture (SOA), application level security in SOA, SOA security policy

Cite: Said Nabi, Saif Ur Rehman, Simon Fong, and Kamran Aziz, "A Model for Implementing Security at Application Level in Service Oriented Architecture," Journal of Emerging Technologies in Web Intelligence, Vol. 6, No. 1, pp. 157-163, February 2014. doi:10.4304/jetwi.6.1.157-163