信息系统外文翻译

《信息系统外文翻译》由会员上传分享，免费在线阅读，更多相关内容在工程资料-天天文库。

1、外文翻译08信管(2)班XC08540214张力炯原文1VerifyingPolicy-BasedWebServicesSecuritySECURITYPOLICIESFORWEBSERVICES1WebServicesandXMLRewritingAttacksWeconsidersystemsofSOAPprocessorsdistributedacrossmultiplemachines.TheprimitivemessagepatternisasynchronouscommunicationofasingleSOAPmessagefromoneprocessortoanother

2、.Acommonderivedmessagepatternisarequest-responseprotocolbetweenaclientandaserver.AsingleSOAPprocessor(e.g.，awebserver)mayactbothasaclientandaserver.Forexample,actingasaserver,itmayreceivearequestandthen,actingasaclientofanotherserver,sendanewrequestandusethesubsequentresponsetoconstructitsrespons

3、etotheoriginalrequest.EachSOAPmessageconformstoanXMLschemaforanenvelope,comprisinganoptionalheaderelementforrouting,security,andothermetadata,plusamandatorybodyelementcontainingthemessagepayload.Forinstance,hereisasimple(unprotected)envelope.

5、ormation,andusesanabstractsyntaxforpoliciesandconfigurations.OurformalismretainsmanydetailsoftheXMLsyntax,astheymatterforsecurity;forexample,anXMLsignaturemaycoversomechosensubsetoftheSOAPheaders,soourmodelneedstorepresentthevariousheaders.EventhoughourformalismhidessomeoftheXMLdetails,ourtoolsdi

6、rectlyconsumeandproducetheXMLfileformatsusedbyWSE.Thereisarisk,ofcourse,thatSOAPmessagesmaybereadintransitbyapassiveattackerabletoreadnetworktraffic.Moreover,SOAPmessagesmaybecreated,modified,andreplayedbyanactiveattackerabletoinjectmessagesintothenetwork.(Infact,theflexibilityandexplicitnessofSO

7、APmessagesalsomakesuchattackseasiertosetup.)Theusualsolutionistosecuremessageswithcryptography.Thedetailsaresubtle.Theincorrectuseofcryptographymayleavevulnerabilitiesopentoattack,asdescribedbyNeedhamandSchroeder[1978]