Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services

November 2010 • Technical Report

Marc Novakouski, Soumya Simanta, Gunnar Peterson, Edwin J. Morris, Grace Lewis

This paper presents the results of a series of experiments targeted at analyzing the performance impact of adding WS-Security, a common security standard used in IdM frameworks, to SOAP-based web services.

Publisher:

Software Engineering Institute

CMU/SEI Report Number

CMU/SEI-2010-TR-023

DOI (Digital Object Identifier):

10.1184/R1/6581945.v1

Subjects

Service-Oriented ArchitectureService-Oriented Architecture

Abstract

Identity management (IdM) solutions in web services environments are often compared on the levels of performance and security they provide. Selecting the appropriate IdM solution for a given system or application often requires making tradeoffs between security and performance, while also considering the system's contextual and environmental requirements and constraints. This paper presents the results of a series of experiments targeted at analyzing the performance impact of adding WS-Security, a common security standard used in IdM frameworks, to SOAP-based web services. The goal of this work is to establish a baseline of performance data that can be used to explore performance/security tradeoffs in environments with complex attributes, such as resource or bandwidth limitations.

Download PDF

Cite This Report

SEI

Novakouski, Marc; Simanta, Soumya; Peterson, Gunnar; Morris, Edwin; & Lewis, Grace. Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services. CMU/SEI-2010-TR-023. Software Engineering Institute, Carnegie Mellon University. 2010. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9583

IEEE

Novakouski. Marc, Simanta. Soumya, Peterson. Gunnar, Morris. Edwin, and Lewis. Grace, "Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Report CMU/SEI-2010-TR-023, 2010. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9583

APA

Novakouski, Marc., Simanta, Soumya., Peterson, Gunnar., Morris, Edwin., & Lewis, Grace. (2010). Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services (CMU/SEI-2010-TR-023). Retrieved June 08, 2023, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9583

CHI

Marc Novakouski, Soumya Simanta, Gunnar Peterson, Edwin Morris, & Grace Lewis. Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services (CMU/SEI-2010-TR-023). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2010. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9583

MLA

Novakouski, Marc., Simanta, Soumya., Peterson, Gunnar., Morris, Edwin., & Lewis, Grace. 2010. Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services (Technical Report CMU/SEI-2010-TR-023). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9583

BibTex

@techreport{NovakouskiPerformanceAnalysis2010,
title={Performance Analysis of WS-Security Mechanisms in SOAP-Based Web Services},
author={Marc Novakouski and Soumya Simanta and Gunnar Peterson and Edwin Morris and Grace Lewis},
year={2010},
number={CMU/SEI-2010-TR-023},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9583} }

Ask a question about this Technical Report

Software Engineering Institute