{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2022,4,3]],"date-time":"2022-04-03T18:53:36Z","timestamp":1649012016712},"reference-count":27,"publisher":"Springer Science and Business Media LLC","issue":"5","license":[{"start":{"date-parts":[[2015,4,30]],"date-time":"2015-04-30T00:00:00Z","timestamp":1430352000000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["Datenschutz Datensich"],"published-print":{"date-parts":[[2015,5]]},"DOI":"10.1007\/s11623-015-0420-x","type":"journal-article","created":{"date-parts":[[2015,4,29]],"date-time":"2015-04-29T18:16:25Z","timestamp":1430331385000},"page":"317-322","update-policy":"http:\/\/dx.doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Web of Services Security"],"prefix":"10.1007","volume":"39","author":[{"given":"Peter Leo","family":"Gorski","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Luigi","family":"Lo Iacono","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hoai Viet","family":"Nguyen","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Daniel Behnam","family":"Torkian","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2015,4,30]]},"reference":[{"key":"420_CR1","unstructured":"W3C, Web of Services, 2014 [Online]. Available: http:\/\/www.w3.org\/standards\/webofservices\/"},{"key":"420_CR2","volume-title":"Internet of Things in 2020\u2013A Roadmap for the Future","author":"A. Bassi","year":"2008","unstructured":"A. Bassi and G. Horn, Internet of Things in 2020\u2013A Roadmap for the Future, 2008 [Online]. Available: http:\/\/www.smart-systems-integration. org\/public\/documents\/publications\/Internet-of-Things_in_2020_ECEPoSS_Workshop_Report_2008_v3.pdf"},{"key":"420_CR3","volume-title":"Internet der Dinge","author":"Bundesministerium f\u00fcr Wirtschaft und Energie","year":"2014","unstructured":"Bundesministerium f\u00fcr Wirtschaft und Energie, Internet der Dinge, 2014 [Online]. Available: http:\/\/www.bmwi.de\/DE\/Themen\/Digitale-Welt\/Internet-der-Zukunft\/internet-der-dinge.html"},{"key":"420_CR4","volume-title":"SOA Principles of Service Design (The Prentice Hall Service-Oriented Computing Series from Thomas Erl)","author":"T. Erl","year":"2007","unstructured":"T. Erl, SOA Principles of Service Design (The Prentice Hall Service-Oriented Computing Series from Thomas Erl). Upper Saddle River, NJ, USA: Prentice Hall PTR, 2007."},{"key":"420_CR5","volume-title":"SOAP Version 1.2 Part 1: Messaging Framework (Second Edition)","author":"M. Gudgin","year":"2007","unstructured":"M. Gudgin, M. Hadley, N. Mendelsohn, J.-J. Moreau, H. F. Nielsen, A. Karmarkar and Y. Lafon, SOAP Version 1.2 Part 1: Messaging Framework (Second Edition), W3C, Recommendation, 2007. [Online]. Available: http:\/\/www.w3.org\/TR\/soap12-part1\/"},{"key":"420_CR6","volume-title":"Architectural Styles and the Design of Network-based Software Architectures","author":"R. Fielding","year":"2000","unstructured":"R. Fielding, Architectural Styles and the Design of Network-based Software Architectures, Ph.D. dissertation, University of California, Irvine, 2000 [Online]. Available: http:\/\/www.ics.uci.edu\/~fielding\/pubs\/dissertation\/top.htm"},{"key":"420_CR7","volume-title":"OASIS Web Services Security (WSS) TC","author":"OASIS","year":"2006","unstructured":"OASIS, OASIS Web Services Security (WSS) TC, 2006 [Online]. https:\/\/www.oasis-open.org\/committees\/tc_home.php?wg_ abbrev=wss"},{"key":"420_CR8","doi-asserted-by":"publisher","DOI":"10.17487\/rfc5246","volume-title":"The Transport Layer Security (TLS) Protocol Version 1.2","author":"T. Dierks","year":"2008","unstructured":"T. Dierks and E. Rescorla, The Transport Layer Security (TLS) Protocol Version 1.2, IETF, RFC 5246, 2008 [Online]. Available: http:\/\/www.ietf.org\/rfc\/rfc2546.txt"},{"key":"420_CR9","doi-asserted-by":"crossref","first-page":"464","DOI":"10.1109\/SCC.2014.68","volume-title":"11th IEEE International Conference on Service Computing, ser. SCC\u201914. Anchorage, Alaska, USA: IEEE","author":"P. L. Gorski","year":"2014","unstructured":"P. L. Gorski, L. Lo Iacono, H. V. Nguyen and D. B. Torkian, Service Security Revisited, in: 11th IEEE International Conference on Service Computing, ser. SCC\u201914. Anchorage, Alaska, USA: IEEE 2014, pp. 464\u2013471, Available: http:\/\/ieeexplore.ieee.org\/xpl\/articleDetails.jsp?tp=&arnumber= 6930568&queryText%3DService+Security+Revisited"},{"key":"420_CR10","volume-title":"Emerging Trends in Software Development & Implications for IT Security: An Explorative Study","author":"C. Ochs","year":"2014","unstructured":"C. Ochs, Emerging Trends in Software Development & Implications for IT Security: An Explorative Study, EC SPRIDE, 2014 [Online]. Available: http:\/\/www.ec-spride.tu-darmstadt.de\/fileadmin\/user_upload\/Group_EC_Spride\/files\/TR_SoftwareDevelopment.pdf"},{"key":"420_CR11","volume-title":"Uniform Resource Identifier (URI): Generic Syntax","author":"T. Berners-Lee","year":"2005","unstructured":"T. Berners-Lee, R. Fielding and L. Masinter, Uniform Resource Identifier (URI): Generic Syntax, IETF, RFC 3986, 2005 [Online]. Available: http:\/\/www.ietf.org\/rfc\/rfc3986.txt"},{"key":"420_CR12","doi-asserted-by":"publisher","DOI":"10.17487\/rfc7234","volume-title":"Hypertext Transfer Protocol (HTTP\/1.1): Semantics and Content","author":"R. Fielding","year":"2014","unstructured":"R. Fielding and J. Reschke, Hypertext Transfer Protocol (HTTP\/1.1): Semantics and Content, IETF, RFC 7231, 2014 [Online]. Available: http:\/\/www.ietf.org\/rfc\/rfc7231.txt"},{"key":"420_CR13","doi-asserted-by":"publisher","DOI":"10.17487\/rfc4627","volume-title":"The application\/json Media Type for JavaScript Object Notation (JSON)","author":"D. Crockford","year":"2006","unstructured":"D. Crockford, The application\/json Media Type for JavaScript Object Notation (JSON), IETF, RFC 4627, 2006 [Online]. Available: http:\/\/www.ietf.org\/rfc\/rfc4627.txt"},{"key":"420_CR14","doi-asserted-by":"publisher","first-page":"25","DOI":"10.1145\/2307819.2307827","volume-title":"Proceedings of the Third International Workshop on RESTful Design, ser. WS-REST\u2019 12","author":"M. Lanthaler","year":"2012","unstructured":"M. Lanthaler and C. G\u00fctl, On Using JSON-LD to Create Evolvable RESTful Services, in Proceedings of the Third International Workshop on RESTful Design, ser. WS-REST\u2019 12. New York, NY, USA: ACM, 2012, pp. 25\u201332 [Online]. Available: http:\/\/doi.acm.org\/10.1145\/2307819.2307827"},{"key":"420_CR15","doi-asserted-by":"publisher","DOI":"10.17487\/RFC7515","volume-title":"JSON Web Signature (JWS)","author":"M. Jones","year":"2015","unstructured":"M. Jones, J. Bradley and N. Sakimura, JSON Web Signature (JWS), IETF, Internet-Draft, 2015 [Online]. Available: http:\/\/tools.ietf.org\/html\/draft-ietfjose-json-web-signature-41"},{"key":"420_CR16","volume-title":"JSON Web Encryption (JWE)","author":"M. Jones","year":"2015","unstructured":"M. Jones, E. Rescorla and J. Hildebrand, JSON Web Encryption (JWE), IETF, Internet-Draft, 2015 [Online]. Available: http:\/\/tools.ietf.org\/html\/draftietf-jose-json-web-encryption-40"},{"key":"420_CR17","doi-asserted-by":"publisher","DOI":"10.17487\/RFC7518","volume-title":"JSON Web Algorithms (JWA)","author":"M. Jones","year":"2015","unstructured":"M. Jones, JSON Web Algorithms (JWA), IETF, Internet-Draft, 2015 [Online]. Available: http:\/\/tools.ietf.org\/html\/draft-ietf-jose-json-web-algorithms-40"},{"key":"420_CR18","volume-title":"JSON Web Key (JWK)","author":"M. Jones","year":"2015","unstructured":"M. Jones, JSON Web Key (JWK), IETF, Internet-Draft, 2015 [Online]. Available: http:\/\/tools.ietf.org\/html\/draft-ietf-jose-json-web-key-41"},{"key":"420_CR19","volume-title":"19th IEEE International Conference on Web Services, ser. ICWS\u201912. Honolulu, USA: IEEE, June 24\u201329","author":"G. Serme","year":"2012","unstructured":"G. Serme, A. S. de Oliveira, Y. Roudier and J. Massiera, Enabling message security for RESTful services, in 19th IEEE International Conference on Web Services, ser. ICWS\u201912. Honolulu, USA: IEEE, June 24\u201329, 2012 [Online]. Available: http:\/\/www.eurecom.fr\/publication\/3739"},{"key":"420_CR20","volume-title":"Signing and Authenticating REST Requests","author":"Amazon","year":"2006","unstructured":"Amazon, Signing and Authenticating REST Requests, 2006 [Online]. Available: http:\/\/docs.aws.amazon.com\/AmazonS3\/ latest\/dev\/RESTAuthentication. html"},{"key":"420_CR21","volume-title":"Signing HTTP Messages","author":"M. Cavage","year":"2015","unstructured":"M. Cavage and M. Sporny, Signing HTTP Messages, IETF, Internet-Draft, 2015 [Online]. Available: http:\/\/tools.ietf.org\/html\/draft-cavage-http-signatures-04"},{"key":"420_CR22","volume-title":"The OAuth 2.0 Authorization Framework, IETF, RFC 6749","author":"D. Hardt","year":"2012","unstructured":"D. Hardt: The OAuth 2.0 Authorization Framework, IETF, RFC 6749, 2012 [Online]. Available: https:\/\/tools.ietf.org\/html\/rfc6749"},{"key":"420_CR23","volume-title":"Persona","author":"Mozilla Developer Network","year":"2013","unstructured":"Mozilla Developer Network, Persona, 2013 [Online]. Available: https:\/\/developer. mozilla.org\/en-US\/Persona"},{"key":"420_CR24","volume-title":"OpenID Foundation","author":"OpenID Foundation","year":"2014","unstructured":"OpenID Foundation, OpenID Foundation, 2014 [Online]. Available: http:\/\/ openid.net\/foundation\/"},{"key":"420_CR25","volume-title":"Web Cryptography API","author":"R. Sleevi","year":"2014","unstructured":"R. Sleevi and D. Dahl, Web Cryptography API, W3C, W3C Candidate Recommendation, 2014 [Online]. Available: http:\/\/www.w3.org\/TR\/ WebCryptoAPI"},{"key":"420_CR26","volume-title":"XML External Entity (XXE) Processing","author":"OWASP","year":"2013","unstructured":"OWASP, XML External Entity (XXE) Processing, 2013 [Online]. Available: https:\/\/www.owasp.org\/index.php\/XML_ External_Entity_(XXE)_Processing"},{"key":"420_CR27","volume-title":"XML Signature Wrapping Angriffe","author":"N. Gruschka","year":"2009","unstructured":"N. Gruschka, M. Jensen, L. Lo Iacono and J. Schwenk, XML Signature Wrapping Angriffe, DuD 9\/2009, S.553-560"}],"container-title":["Datenschutz und Datensicherheit - DuD"],"original-title":[],"language":"de","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11623-015-0420-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/article\/10.1007\/s11623-015-0420-x\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11623-015-0420-x","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"},{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/s11623-015-0420-x.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2020,9,1]],"date-time":"2020-09-01T14:35:26Z","timestamp":1598970926000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/s11623-015-0420-x"}},"subtitle":["Mehr als die Sicherheit von Webanwendungen"],"short-title":[],"issued":{"date-parts":[[2015,4,30]]},"references-count":27,"journal-issue":{"issue":"5","published-print":{"date-parts":[[2015,5]]}},"alternative-id":["420"],"URL":"https:\/\/doi.org\/10.1007\/s11623-015-0420-x","relation":{},"ISSN":["1614-0702","1862-2607"],"issn-type":[{"value":"1614-0702","type":"print"},{"value":"1862-2607","type":"electronic"}],"subject":[],"published":{"date-parts":[[2015,4,30]]}}}