SEMANTIC ANNOTATIONS FOR SECURITY POLICY MATCHING IN WS-POLICY

Giuseppe Di Modica, Orazio Tomarchio

Abstract

SService computing technology enables B2B scenarios where the provision of a service may require a collaboration among several service providers across multiple independent and heterogeneous administrative domains. In these environments, several new security and privacy challenges arise, mainly related to resource sharing and interoperability among different providers. Policy management frameworks are a powerful mechanism to deal with this heterogeneity, although many issues still have to be faced with. In particular, policy matching is today carried out following a syntactical approach, which may impair the selection of suitable services on the one hand, and the flexibility of the matching process on the other one. In this work we propose a semantic approach that, by allowing WS-Policy assertions to reference semantic concepts, provides for a better matching of security requirements and capabilities. The proposed approach has been validated through a case study that shows how a pure syntactic-based mechanism of WS-Policy would have failed in matching two actually compatible policies.

References

  1. Damianou, N., Dulay, N., Lupu, E., and Sloman, M. (2001). The ponder policy specification language. In Proceedings of the International Workshop on Policies for Distributed Systems and Networks, POLICY 7801, pages 18-38, London, UK. Springer-Verlag.
  2. Garcia, D. Z. G. a. and Felgar de Toledo, M. B. (2008). Ontology-Based Security Policies for Supporting the Management of Web Service Business Processes. In 2008 IEEE International Conference on Semantic Computing, pages 331-338. Ieee.
  3. Kim, A., Luo, J., and Kang, M. (2005). Security ontology for annotating resources. In On the Move to Meaningful Internet Systems 2005: CoopIS, DOA, and ODBASE, pages 1483-1499. Springer.
  4. Lakshminarayanan, S. (2010). Interoperable security standards for web services. IT Professional, 12(5):42 -47.
  5. OASIS (2006). Web Services Security (WS-Security). OASIS Standard.
  6. Phan, T., Han, J., Schneider, J., Ebringer, T., and Rogers, T. (2008). A survey of policy-based management approaches for Service Oriented Systems. In Software Engineering, 2008. ASWEC 2008. 19th Australian Conference on, pages 392-401. IEEE.
  7. Speiser, S. (2010). Semantic Annotations for WS-Policy. In IEEE International Conference on Web Services (ICWS 2010), pages 449-456. IEEE.
  8. Sriharee, N., Senivongse, T., Verma, K., and Sheth, A. (2004). On using ws-policy, ontology, and rule reasoning to discover web services. In Intelligence in Communication Systems, number May 2004, pages 246-255. Springer.
  9. Tonti, G., Bradshaw, J., Jeffers, R., Montanari, R., Suri, N., and Uszok, A. (2003). Semantic Web languages for policy representation and reasoning: A comparison of KAoS, Rei, and Ponder. In International Semantic Web Conference (ISWC2003), pages 419-437, Florida (USA). Springer.
  10. Uszok, A., Bradshaw, J., Jeffers, R., Suri, N., Hayes, P., Breedy, M., Bunch, L., Johnson, M., Kulkarni, S., and Lott, J. (2003). Kaos policy and domain services: Toward a description-logic approach to policy representation, deconfliction, and enforcement. In Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks, POLICY 7803, pages 93-, Washington, DC, USA. IEEE Computer Society.
  11. Verma, K., Akkiraju, R., and Goodwin, R. (2005). Semantic matching of Web service policies. In Semantic Web Policy Workshop (SDWP 2005).
  12. W3C (2007). Web services policy 1.5 - framework. W3C Recommendation.
  13. W3C (2009). OWL 2 Web Ontology Language. W3C Recommendation.
  14. Zheng-qiu, H., Li-fa, W., Zheng, H., and Hai-guang, L. (2009). Semantic Security Policy for Web Service. In 2009 IEEE International Symposium on Parallel and Distributed Processing with Applications, pages 258- 262. Ieee.
Download


Paper Citation


in Harvard Style

Di Modica G. and Tomarchio O. (2011). SEMANTIC ANNOTATIONS FOR SECURITY POLICY MATCHING IN WS-POLICY . In Proceedings of the International Conference on Security and Cryptography - Volume 1: MPEIS, (ICETE 2011) ISBN 978-989-8425-71-3, pages 443-449. DOI: 10.5220/0003564604430449


in Bibtex Style

@conference{mpeis11,
author={Giuseppe Di Modica and Orazio Tomarchio},
title={SEMANTIC ANNOTATIONS FOR SECURITY POLICY MATCHING IN WS-POLICY},
booktitle={Proceedings of the International Conference on Security and Cryptography - Volume 1: MPEIS, (ICETE 2011)},
year={2011},
pages={443-449},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0003564604430449},
isbn={978-989-8425-71-3},
}


in EndNote Style

TY - CONF
JO - Proceedings of the International Conference on Security and Cryptography - Volume 1: MPEIS, (ICETE 2011)
TI - SEMANTIC ANNOTATIONS FOR SECURITY POLICY MATCHING IN WS-POLICY
SN - 978-989-8425-71-3
AU - Di Modica G.
AU - Tomarchio O.
PY - 2011
SP - 443
EP - 449
DO - 10.5220/0003564604430449