摘要
随着Web服务技术的应用与发展,组合Web服务的安全问题日益突出。已有的Web服务安全规范只是指定实现单独的自治Web服务安全需求应该遵循的协议,尚没有一个被广泛接受的组合Web服务安全体系架构。指出了现有的Web服务组合安全框架研究的不足,分析了组合Web服务的安全模型的要求。针对Web服务应用模式,提出了一种基于Web服务协议栈的组合Web服务分层安全模型(HSM-WSC),并对每个层的安全功能进行了论述。HSM-WSC模型具有灵活性和可扩展性,能够满足Web服务组合的安全需求。最后还给出了HSM-WSC模型的实施机制。
With the development and application of Web services technologies,the security issues of Web services com- position are increasingly prominent. The present security specifications of Web services are only specified for a single Web service, and there is no architecture for security of composite Web services being approved by most people. The in- sufficiency of present research on Web services composition security architecture was pointed out and the requirements of Web service composition security were analyzed. We proposed a hierarchical security model for Web services compo- sition (HSM-WSC) based on Web services stack according to the Web service application mode, and analyzed the security function of each layer in the model. This model has the advantages of flexibility and extensibility, and satisfies various requirements of secure composite Web services. The paper also described the Implementation architecture of HSM-WSC in the end.
出处
《计算机科学》
CSCD
北大核心
2010年第2期113-115,153,共4页
Computer Science
基金
国家高技术研究发展计划(863计划)(2008AA01Z127,2008AA01Z131)
国家自然科学基金项目(60673010)资助
关键词
安全模型
WEB服务组合
可信协同
业务流程
Security model,Web services composition,Reliable cooperation,Business process