Expressing authorization in semantic web services

Abstract

Currently many Web services use authentication to make authorization decisions on an operation by operation basis. Semantic Web services need the ability to describe authorization for the purpose of Web service discovery. In this paper we propose a framework for describing authorization using Semantic annotations in WS-Policy. These annotations are used in the post-'Semantic Discovery Phase' to determine if a requester has permissions to invoke a published service.