Abstract
The lack of semantics in WS-SecurityPolicy (WS-SP) hampers the effectiveness of matching the compatibility between WS-SP assertions. To resolve this problem, we present in this paper a semantic approach for specifying and matching the security assertions. The approach consists in the transformation of WS-SP into an OWL-DL ontology and the definition of a set of semantic relations that can exist between the provider and requestor security concepts. We show how these relations lead to more correct and flexible matching of security assertions.
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
OASIS: WS-Security 1.1, http://www.oasis-open.org/specs/
OASIS: WS-SecurityPolicy 1.3, http://www.oasis-open.org/specs/
WS-Policy 1.5, http://www.w3.org/TR/ws-policy/
W3C: SWRL: A Semantic Web Rule Language Combining OWL and RuleML, http://www.w3.org/Submission/SWRL/
OASIS: Web Services Security X.509 Certificate Token Profile, http://www.oasis-open.org/specs/
W3C: OWL Web Ontology Language Guide, http://www.w3.org/TR/owl-guide/
OWL protege Web page, http://protege.stanford.edu/overview/protege-owl.html
The Jess engine Web page, http://www.jessrules.com/
W3C: Semantic Annotations for WSDL and XML Schema, http://www.w3.org/TR/sawsdl/
Ben Brahim, M., Ben Jemaa, M., Jmaiel, M.: Security Mapping to Enhance Matching Fine-Grained Security Policies. In: Zavoral, F., Yaghob, J., Pichappan, P., El-Qawasmeh, E. (eds.) NDT 2010, Part I. CCIS, vol. 87, pp. 183–196. Springer, Heidelberg (2010)
Chaari, S., Badr, Y., Biennier, F.: Enhancing web service selection by qos-based ontology and ws-policy. In: Proceedings of the 2008 ACM Symposium on Applied Computing, pp. 2426–2431. ACM (2008)
Denker, G., Kagal, L., Finin, T.W., Paolucci, M., Sycara, K.: Security for DAML Web Services: Annotation and Matchmaking. In: Fensel, D., Sycara, K., Mylopoulos, J. (eds.) ISWC 2003. LNCS, vol. 2870, pp. 335–350. Springer, Heidelberg (2003)
He, Z., Wu, L., Hong, Z., Lai, H.: Semantic security policy for web service. In: Proceedings of the IEEE International Symposium on Parallel and Distributed Processing with Applications, pp. 258–262. IEEE Computer Society (2009)
Kim, A., Luo, J., Kang, M.: Security Ontology for Annotating Resources. In: Meersman, R., Tari, Z. (eds.) OTM 2005, Part II. LNCS, vol. 3761, pp. 1483–1499. Springer, Heidelberg (2005)
Kolovski, V., Parsia, B., Katz, Y., Hendler, J.: Representing Web Service Policies in OWL-DL. In: Gil, Y., Motta, E., Benjamins, V.R., Musen, M.A. (eds.) ISWC 2005. LNCS, vol. 3729, pp. 461–475. Springer, Heidelberg (2005)
Ono, K., Nakamura, Y., Satoh, F., Tateishi, T.: Verifying the consistency of security policies by abstracting into security types. In: Proceedings of the 2007 IEEE International Conference on Web Services, pp. 497–504. IEEE Computer Society (2007)
Speiser, S.: Semantic annotations for ws-policy. In: Proceedings of the 2010 IEEE International Conference on Web Services, pp. 449–456. IEEE Computer Society (2010)
Verma, K., Akkiraju, R., Goodwin, R.: Semantic matching of web service policies. In: Proceedings of the Second Workshop on Semantic and Dynamic Web Processes, pp. 79–90 (2005)
Zuquim Guimaraes Garcia, D., Beatriz Felgar de Toledo, M.: Ontology-based security policies for supporting the management of web service business processes. In: Proceedings of the 2th IEEE International Conference on Semantic Computing, pp. 331–338. IEEE Computer Society (2008)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2012 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Ben Brahim, M., Chaari, T., Ben Jemaa, M., Jmaiel, M. (2012). Semantic Matching of WS-SecurityPolicy Assertions. In: Pallis, G., et al. Service-Oriented Computing - ICSOC 2011 Workshops. ICSOC 2011. Lecture Notes in Computer Science, vol 7221. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-31875-7_13
Download citation
DOI: https://doi.org/10.1007/978-3-642-31875-7_13
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-31874-0
Online ISBN: 978-3-642-31875-7
eBook Packages: Computer ScienceComputer Science (R0)