Abstract
In current scenario, the security issues are major concern for the proper functioning of semantic Web services. Whatever the facilities attained by the users or customers through Web services must have a concrete level of secure access, so that unauthorized access or usage may be prohibited to make their activities secure. The extant mechanism for access control restrains users from logging into data beyond their authorization, but they are incompetent to prohibit mishandling of the data made by them. This paper proposes a new framework for securing semantic Web services by applying anomaly detection mechanism with XACML. The main aim of the proposed framework is to identify the suspicious activities performed by a legitimate insider. In this research article, it is being tried to give the details of security framework on Web service which prevents information disclosure whether intentional or accidental.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
P. Rodriguez-Mier, C. Pedrinaci, C. Lama, M. Mucientes, An integrated semantic web service discovery and composition framework. IEEE Trans. Serv. Comput. 9, 537–550 (2016)
X. Li, Y. Xue, B. Malin, Detecting anomalous user behaviors in workflow-driven web applications. in IEEE 31st Symposium on Reliable Distributed Systems (IEEE, Irvine, CA, USA, 2012), pp. 1–10
Symantec internet security threat report, http://www.symantec.com/business/theme.jsp?themeid=threatreport
M. Le, A. Stavrou, B.B. Kang, Doubleguard: detecting intrusions in multitier web applications. IEEE Trans. Dependable Secure Comput. 9, 412–425 (2012)
A. Sallam, E. Bertino, S.R. Hussain, D. Landers, R.M. Lefler, D. Steine, DBSAFE—an anomaly detection system to protect databases from exfiltration attempt. IEEE Syst. J. 11, 483–493 (2017)
S. Lau, R. Zamani, W. Susilo, A semantic web vision for an intelligent community transport service brokering system. in IEEE International Conference on Intelligent Transportation Engineering (IEEE Press, Singapore, 2016), pp. 172–175
J. Jovanovic, E. Bagheri, Electronic commerce meets the semantic web. IEEE Comput. Society. 18, 56–65 (2016)
L. Bossi, E. Bertino, S.R. Hussain, A system for profiling and monitoring database access patterns by application programs for anomaly detection. IEEE Trans. Software Eng. 43, 415–431 (2017)
Y. Cheng, J. Park, R. Sandhu, An access control model for online social networks using user-to-user relationships. IEEE Trans. Dependable Secure Comput. 13, 446–453 (2016)
OASIS eXtensible Access Control Markup Language. https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=xacml
Oracle White Paper. https://www.oracle.com/technetwork/database/bi-datawarehousing/twp-explain-the-explain-plan-052011-393674.pdf
Acknowledgements
This work was supported by Integral University with Manuscript Communication Number (MCN)—IU/R&D/2019-MCN000540.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Singh, N.K., Nayak, S.K. (2021). The Threat Detection Framework for Securing Semantic Web Services Based on XACML. In: Gao, XZ., Tiwari, S., Trivedi, M., Mishra, K. (eds) Advances in Computational Intelligence and Communication Technology. Advances in Intelligent Systems and Computing, vol 1086. Springer, Singapore. https://doi.org/10.1007/978-981-15-1275-9_12
Download citation
DOI: https://doi.org/10.1007/978-981-15-1275-9_12
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-15-1274-2
Online ISBN: 978-981-15-1275-9
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)