Dr. Jeff de La Beaujardiere receives OGC Lifetime Achievement Award
Jeff’s support of open standards and OGC’s FAIR mission has improved access to Earth science information for countless users and decision-makers globally.
OGC® Web Services Security
Overview
Information Assurance (IA) Controls for OGC Web Services (OWS) have been implemented for years. However, these implementations break interoperability, as they are not standardized by OGC Web Service standards. Interoperability between secured OGC Web Services and clients is limited to systems custom built to work with an IA implementation.
The goal of the OWS Common Security Standard is to allow the implementation of IA controls and to advertise their existence in an interoperable way with minimal impact to existing implementations using a backwards-compatible approach. That goal is being pursued in two ways:
- Identify and document IA Controls for supporting authentication in a register maintained through the OGC.
- Specify how a service can advertise their IA controls through the Service Capabilities Document.
This OGC standard applies to OWS deployed on HTTPS. It specifies how conformant OWS Services shall advertise their IA Controls and additional security features. The advertisement uses XML elements that are already part of the Capabilities document structure. This ensures that existing client implementations will not break.
The standard also describes the governance process for the IA Control registers, examples of register contents, and descriptions on how this information should be used.
Next, this standard defines conformance classes and requirements classes to be used for reaching compliance and their validation via conformance tests.
Finally, this standard defines client behavior to ensure interoperable processing of advertised security controls.
Downloads
| Document title | Version | OGC Doc No. | Type |
|---|---|---|---|
| OGC Web Services Security | 1.0 | 17-007r1 | IS |
Official model files and encoding schemas
Related links
No Results Found.
OGC Standards
- 3D Tiles
- 3dP
- ARML2.0
- Cat: ebRIM App Profile: Earth Observation Products
- Catalogue Service
- CDB
- CityGML
- CityJSON
- Coordinate Transformation
- EO-GeoJSON
- Filter Encoding
- GML in JPEG 2000
- GeoAPI
- GeoPackage
- GeoPose
- GeoSciML
- GeoSPARQL
- Geography Markup Language
- GeoRSS
- Geospatial eXtensible Access Control Markup Language (GeoXACML)
- Geospatial User Feedback (GUF)
- GeoTiff
- GroundwaterML
- HDF5
- I3S
- Indoor Mapping Data Format (IMDF)
- IndoorGML
- KML
- LandInfra/InfraGML
- LAS
- Location Services (OpenLS)
- Moving Features
- NetCDF
- Observations and Measurements
- OGC API – EDR
- OGC API – Common
- OGC API – Features
- OGC API – Processes
- OGC API – Tiles
- Open GeoSMS
- OpenMI
- OpenSearch
- Ordering Services Framework for Earth Observation Products
- OWS Context
- OWS Security
- PipelineML
- PubSub
- PUCK
- SWE Common Data Model
- SWE Service Model
- Sensor Model Language
- Sensor Observation Service
- Sensor Planning Service
- SensorThings
- Semantic Sensor Network (SSN)
- Symbology Core
- Simple Features
- Simple Features CORBA
- Simple Features OLE/COM
- Simple Features SQL
- Styled Layer Descriptor
- Symbology Encoding
- Table Joining Service
- Time Ontology in OWL
- TimeseriesML (tsml)
- Two Dimensional Tile Matrix Set
- WaterML
- Web Coverage Processing Service
- Web Coverage Service
- Web Feature Service
- Web Map Context
- Web Map Service
- Web Map Tile Service
- Web Processing Service
- Web Service Common
- WKT CRS
