Blog
About

154
views
0
recommends
+1 Recommend
1 collections
    0
    shares
      • Record: found
      • Abstract: found
      • Conference Proceedings: found
      Is Open Access

      A Semantic Approach for Access Control in Web Services

      ,

      EuroWeb 2002 Conference (EW)

      EuroWeb

      17-18 December 2002

      Read this article at

      Bookmark
          There is no author summary for this article yet. Authors can add summaries to their articles on ScienceOpen to make them more accessible to a non-specialist audience.

          Abstract

          One of the most important features of XML Web services is that they can be easily accessed over the Internet, but this makes them vulnerable to a series of security threats. What makes security for web services so challenging is their distributed and heterogeneous nature. In this sense, this paper presents an access control system for Web services. We introduce the Semantic Policy Language(SPL) for the description of access control criteria based on the use of attribute certificates. This language has been specifically designed to take advantage of semantic information about resources and the context to achieve full (syntactic and semantic) validation of policies. Furthermore, another objective in its design has been to facilitate the security management. In particular, SPL is modular, enables the abstraction and reuse of components, the composition of SPL policies in an unambiguous way, and the dynamic instantiation of parameters based on semantic properties about resources. Finally, the semantic integration of a Privilege Management Infrastructure (PMI) in access control systems of heterogeneous Web services built upon SPL enables their interoperability.

          Related collections

          Most cited references 4

          • Record: found
          • Abstract: not found
          • Article: not found

          Role-based access control models

            Bookmark
            • Record: found
            • Abstract: not found
            • Book Chapter: not found

            XML-Based Distributed Access Control System

              Bookmark
              • Record: found
              • Abstract: not found
              • Conference Proceedings: not found

              XML document security based on provisional authorization

                Bookmark

                Author and article information

                Contributors
                Conference
                December 2002
                December 2002
                : 1-9
                Affiliations
                Computer Science Department, University of Málaga, Málaga, Spain
                Article
                10.14236/ewic/EW2002.3
                © M. I. Yagüe et al. Published by BCS Learning and Development Ltd. EuroWeb 2002 Conference

                This work is licensed under a Creative Commons Attribution 4.0 Unported License. To view a copy of this license, visit http://creativecommons.org/licenses/by/4.0/

                EuroWeb 2002 Conference
                EW
                St Anne’s College, Oxford, UK
                17-18 December 2002
                Electronic Workshops in Computing (eWiC)
                EuroWeb
                Product
                Product Information: 1477-9358BCS Learning & Development
                Self URI (journal page): https://ewic.bcs.org/
                Categories
                Electronic Workshops in Computing

                Comments

                Comment on this article