Enhance Matching Web Service Security Policies with Semantic

  • Tuan-Dung CaoEmail author
  • Nguyen-Ban Tran
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 244)


Web service security policy is a way to add some security restrictions to a web service. Matching web service security policies is hard and important to integrate web services effectively. However, the lack of semantics in WS-SecurityPolicy (WS-SP) hampers the effectiveness of matching the compatibility between security policies of different web services. To enhance matching web service security policies, we propose a semantic approach for specifying and matching the security policies. The approach uses the transformation of WS-SP into an OWL-DL ontology, the definition of a set of semantic relations that can exist between the provider and requestor security concepts, and the algorithm to determine the match level of the provider and requestor security policies. We show how these relations and the matching algorithm lead to more correct and more flexible matching of security policies.


Semantic Relation Security Policy Service Orient Architecture Semantic Approach Semantic Match 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. [1]
    OASIS: WS-SecurityPolicy 1.3,
  2. [2]
    W3C: WS-Policy 1.5,
  3. [3]
    Verma, K., Akkiraju, R., Goodwin, R.: Semantic matching of Web service policies. In: Proceedings of the Second Workshop on Semantic and Dynamic Web Processes, pp. 79–90 (2005)Google Scholar
  4. [4]
    Anderson, A.H.: An Introduction to the Web Services Policy Language. In: Fifth IEEE International Workshop on Policies for Distributed Systems and Networks, POLICY 2004 (2004)Google Scholar
  5. [5]
    Benammar, O., Elasri, H., Sekkaki, A.: Semantic Matching of Security Policies to Support Security ExpertsGoogle Scholar
  6. [6]
    Brahim, M.B., Chaari, T., Jemaa, M.B., Jmaiel, M.: Semantic matching of WS-Security Policy assertions (2011)Google Scholar
  7. [7]
    Bhargavan, K., Fournet, C., Gordon, A.D., O’Shea, G.: An Advisor for Web Services Security Policies (2005)Google Scholar
  8. [8]
    Garcia, D.Z.G., de Toledo, M.B.F.: Web Service Security Management Using Semantic Web Techniques (2004)Google Scholar
  9. [9]
    Bhargavan, K., Fournet, C., Gordon, A.D.: Verifying Policy-Based Security for Web ServicesGoogle Scholar
  10. [10]
    He, Z.-Q., Wu, L.-F., Zheng, H., Lai, H.-G.: Semantic Security Policy for Web Service. In: IEEE International Symposium on Parallel and Distributed Processing with Applications (2009)Google Scholar

Copyright information

© Springer International Publishing Switzerland 2014

Authors and Affiliations

  1. 1.School of Information and Communication TechnologyHanoi University of Science and TechnologyHanoiVietnam
  2. 2.Vietnam Joint Stock Commercial Bank for Industry and TradeHanoiVietnam

Personalised recommendations