SOA Security - Secure Cross-Organizational Service Composition

Service-Oriented Architectures (SOA) facilitates the interoperable and seamless interaction of services. The need to communicate with business partners demands a seamless integration of services across organizational boundaries. In fact, the integration and composition of services represent important aspects of a SOA to enable an increased responsiveness to changing business requirements. However, the interaction of independent organizations requires the establishment of trust across all involved business partners as a prerequisite to ensure secure interactions. In particular, the integration of scalable security solutions into SOA is highly demanded. This paper outlines approaches and open issues regarding secure service compositions and cross-organizational service invocation.