摘要
随着Web服务应用的迅速发展,Web服务提供方的安全问题已成为制约其实际应用的主要障碍之一。文中着重讨论了Web服务提供方面临的安全问题,引入了一种基于安全策略与实现分离的信息安全解决模型,并根据Web服务的实际情况进行了改进,方便了Web服务提供方动态地制定安全策略、灵活地实现策略指导下的各种安全措施。最后,采用投影时序逻辑(PTL,Projection Temporal Logic)形式化描述了该模型中资源访问决策部分的规范说明。
With the rapid development of the Web serices applications, the Web scrvices seeuriry issue has emerged as one of obstackes in busncss applications. In particular, the security issue of Web serviees providers becomes more imporatnt than other parts. Discusses the security issues faced by Web services providers, and propcses an information sceurity solving model. With this model ,the security policy and its implementation are separatcd, In addition, to facilitate the sceurity designcers of Web scrvices providers to understand and analyze the model,decriles the speeification of the resource access decision model using projection temporal logic (PTL).
出处
《计算机技术与发展》
2006年第11期162-165,共4页
Computer Technology and Development
基金
国家自然科学基金重点项目资助(60433010)
国家自然科学基金面上项目资助(60373103)
教育部博士点基金项目资助(20030701015)
关键词
投影时序逻辑
WEB服务
安全策略
安全中介
projection temporal logic
Web sevices
security policy
sceurity intermedisry
