Web Service Protection Using a Cryptography Layer on WSDL File

چکیده مقاله

Web service is one of the most important technologies, developing nowadays, that their security has always been under debates. The result of investigations about security of exchanged messages between web services are gathered as a standard which called WS-Security. This paper has focused on the safety challenges of WSDL, a file that presents the needed information for using a web service, and presented a new approach for securing WSDL by employing WS-Security standard to protect web services against one kind of attacks which named “Parsing attack.” As using this security layer increases the response time, it is not a general solution for all web services. It would be suitable for ones that the information included in their WSDL is critical according their specific types of services.