首页    期刊浏览 2024年11月27日 星期三
登录注册

文章基本信息

  • 标题:A Policy-based Adaptive Web Services Security Framework
  • 本地全文:下载
  • 作者:Li, Bin ; Zhao, Lingjun ; Zhu, Junwu
  • 期刊名称:Journal of Software
  • 印刷版ISSN:1796-217X
  • 出版年度:2011
  • 卷号:6
  • 期号:12
  • 页码:2456-2463
  • DOI:10.4304/jsw.6.12.2456-2463
  • 语种:English
  • 出版社:Academy Publisher
  • 摘要:Web services security has become a hot topic in the research of service oriented computing. This paper aims to study many pivotal technologies in the web services security. Firstly, a policy-based framework for adaptive web services security is proposed, with the policy concept, management mechanism and execution mechanism can be separated effectively, moreover, by management of user context and web services context, web services access control can adapt to the changed environment. Secondly, a policy description language called ReiT is given, ReiT is a declarative language based on the rules and ontology and can express the structural and non-structural knowledge. A mixed reasoning mechanism is proposed, the web service access control policy including the user context and web services context can be evaluated by the reasoner. Finally, a policy aware BDI agent to authorize the access control of the web services is presented, and a prototype system based on Java EE and Jade Agent platform is implemented, Simulation experimental results and an example demonstrate the security framework is feasible and effective.
  • 关键词:Web Service Security;Policy;Context-awareness;Ontology;Agent
国家哲学社会科学文献中心版权所有