Abstract
Web service security policy is a way to add some security restrictions to a web service. Matching web service security policies is hard and important to integrate web services effectively. However, the lack of semantics in WS-SecurityPolicy (WS-SP) hampers the effectiveness of matching the compatibility between security policies of different web services. To enhance matching web service security policies, we propose a semantic approach for specifying and matching the security policies. The approach uses the transformation of WS-SP into an OWL-DL ontology, the definition of a set of semantic relations that can exist between the provider and requestor security concepts, and the algorithm to determine the match level of the provider and requestor security policies. We show how these relations and the matching algorithm lead to more correct and more flexible matching of security policies.
Access provided by Autonomous University of Puebla. Download to read the full chapter text
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
OASIS: WS-SecurityPolicy 1.3, http://www.oasis-open.org/specs/
W3C: WS-Policy 1.5, http://www.w3.org/TR/ws-policy/
Verma, K., Akkiraju, R., Goodwin, R.: Semantic matching of Web service policies. In: Proceedings of the Second Workshop on Semantic and Dynamic Web Processes, pp. 79–90 (2005)
Anderson, A.H.: An Introduction to the Web Services Policy Language. In: Fifth IEEE International Workshop on Policies for Distributed Systems and Networks, POLICY 2004 (2004)
Benammar, O., Elasri, H., Sekkaki, A.: Semantic Matching of Security Policies to Support Security Experts
Brahim, M.B., Chaari, T., Jemaa, M.B., Jmaiel, M.: Semantic matching of WS-Security Policy assertions (2011)
Bhargavan, K., Fournet, C., Gordon, A.D., O’Shea, G.: An Advisor for Web Services Security Policies (2005)
Garcia, D.Z.G., de Toledo, M.B.F.: Web Service Security Management Using Semantic Web Techniques (2004)
Bhargavan, K., Fournet, C., Gordon, A.D.: Verifying Policy-Based Security for Web Services
He, Z.-Q., Wu, L.-F., Zheng, H., Lai, H.-G.: Semantic Security Policy for Web Service. In: IEEE International Symposium on Parallel and Distributed Processing with Applications (2009)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2014 Springer International Publishing Switzerland
About this paper
Cite this paper
Cao, TD., Tran, NB. (2014). Enhance Matching Web Service Security Policies with Semantic. In: Huynh, V., Denoeux, T., Tran, D., Le, A., Pham, S. (eds) Knowledge and Systems Engineering. Advances in Intelligent Systems and Computing, vol 244. Springer, Cham. https://doi.org/10.1007/978-3-319-02741-8_19
Download citation
DOI: https://doi.org/10.1007/978-3-319-02741-8_19
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-02740-1
Online ISBN: 978-3-319-02741-8
eBook Packages: EngineeringEngineering (R0)