Semantic Security Policy for Web Service

2009 IEEE International Symposium on Parallel and Distributed Processing with Applications Pub Date : 2009-08-18 DOI:10.1109/ISPA.2009.10

He Zheng-qiu, Wu Li-fa, Hong Zheng, Lai Hai-guang

{"title":"Semantic Security Policy for Web Service","authors":"He Zheng-qiu, Wu Li-fa, Hong Zheng, Lai Hai-guang","doi":"10.1109/ISPA.2009.10","DOIUrl":null,"url":null,"abstract":"A primary problem for the security of web service is how to precisely express and match the security policy of each participant that may be in different security domain. Presently, most schemes use syntactic approaches, where pairs of policies are compared for structural and syntactic similarity to determine compatibility, which is prone to result in false negative because of lacking semantics. In this paper, we propose a novel approach to express and match the security policy of web service based on semantics. Through constructing a general security ontology, we present the definition method and matching algorithm of semantic security policy for web service. The use of semantic security policy enables richer representations of policy intent and allows matching of policies with compatible intent, but dissimilar syntax, which is not possible with syntactic approaches. The proposed security ontology is extensible and the semantic security policy is of strong inferability and adaptability, and these characteristics are extremely important to the heterogeneous and dynamic environment of web service.","PeriodicalId":346815,"journal":{"name":"2009 IEEE International Symposium on Parallel and Distributed Processing with Applications","volume":"434 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2009-08-18","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2009 IEEE International Symposium on Parallel and Distributed Processing with Applications","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISPA.2009.10","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

Abstract

A primary problem for the security of web service is how to precisely express and match the security policy of each participant that may be in different security domain. Presently, most schemes use syntactic approaches, where pairs of policies are compared for structural and syntactic similarity to determine compatibility, which is prone to result in false negative because of lacking semantics. In this paper, we propose a novel approach to express and match the security policy of web service based on semantics. Through constructing a general security ontology, we present the definition method and matching algorithm of semantic security policy for web service. The use of semantic security policy enables richer representations of policy intent and allows matching of policies with compatible intent, but dissimilar syntax, which is not possible with syntactic approaches. The proposed security ontology is extensible and the semantic security policy is of strong inferability and adaptability, and these characteristics are extremely important to the heterogeneous and dynamic environment of web service.

查看原文本刊更多论文

Web服务的语义安全策略

web服务安全性的一个主要问题是如何精确地表达和匹配可能处于不同安全域中的每个参与者的安全策略。目前，大多数方案采用语法方法，通过比较策略对的结构和语法相似性来确定兼容性，由于缺乏语义，容易产生假阴性。本文提出了一种基于语义的web服务安全策略表达和匹配的新方法。通过构建通用安全本体，提出了web服务语义安全策略的定义方法和匹配算法。语义安全策略的使用支持更丰富的策略意图表示，并允许匹配具有兼容意图但语法不同的策略，这是语法方法无法实现的。本文提出的安全本体具有可扩展性，语义安全策略具有较强的可推演性和适应性，这些特点对web服务的异构动态环境至关重要。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2009 IEEE International Symposium on Parallel and Distributed Processing with Applications

自引率

0.00%

发文量