期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

组合Web服务分层安全模型研究 被引量:3

Research on Hierarchical Security Model of Web Services Composition
下载PDF
导出
摘要 随着Web服务技术的应用与发展,组合Web服务的安全问题日益突出。已有的Web服务安全规范只是指定实现单独的自治Web服务安全需求应该遵循的协议,尚没有一个被广泛接受的组合Web服务安全体系架构。指出了现有的Web服务组合安全框架研究的不足,分析了组合Web服务的安全模型的要求。针对Web服务应用模式,提出了一种基于Web服务协议栈的组合Web服务分层安全模型(HSM-WSC),并对每个层的安全功能进行了论述。HSM-WSC模型具有灵活性和可扩展性,能够满足Web服务组合的安全需求。最后还给出了HSM-WSC模型的实施机制。 With the development and application of Web services technologies,the security issues of Web services com- position are increasingly prominent. The present security specifications of Web services are only specified for a single Web service, and there is no architecture for security of composite Web services being approved by most people. The in- sufficiency of present research on Web services composition security architecture was pointed out and the requirements of Web service composition security were analyzed. We proposed a hierarchical security model for Web services compo- sition (HSM-WSC) based on Web services stack according to the Web service application mode, and analyzed the security function of each layer in the model. This model has the advantages of flexibility and extensibility, and satisfies various requirements of secure composite Web services. The paper also described the Implementation architecture of HSM-WSC in the end.
作者 上超望 杨宗凯 刘清堂 赵呈领
机构地区 华中师范大学教育信息技术工程研究中心 华中师范大学信息技术系 武汉
出处 《计算机科学》 CSCD 北大核心 2010年第2期113-115,153,共4页 Computer Science
基金 国家高技术研究发展计划(863计划)(2008AA01Z127,2008AA01Z131) 国家自然科学基金项目(60673010)资助
关键词 安全模型 WEB服务组合 可信协同 业务流程 Security model,Web services composition,Reliable cooperation,Business process
分类号 TP393 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献9

  • 1Joachim B, Barbara C, et al. Towards Secure Execution Orders for Composite Web Services[C]//Proc. of 2007 IEEE International Conference on Web Services. 2007:489- 496.
  • 2Carminati B, Ferrari E, et al. Security Conscious Web Service Composition with Semantic Web Support[C]//Proc. of the First International Workshop on Security Technologies for Next Genera tion Collaborative Business Applications. 2007 : 695-704.
  • 3Huang D. Semantic policy-based security framework for business processes [C] //Proc. of the Semantic Web and Policy Workshop. 2005 : 27-31.
  • 4Menzel M,Wolter C, Meinel C. Access Control for Cross organisational Web Service Composition[J]. Journal of Information Assurance and Security,2007,2(2) :155-160.
  • 5Charfi A,Mezini M. Using Aspects for Security Engineering of Web Service Compositions[C]//Proc. of In Proc. of the IEEE International Conference on Web Services. 2005:59-66.
  • 6孔维梁,刘清堂,杨宗凯,谈国新,何婷婷.基于二维QoS模型的Web服务组合[J].计算机科学,2008,35(11):131-134. 被引量:10
  • 7Anoop S, Theodore W, Karen S. NIST Special Publication 800- 95[EB/OL]. Guide to secure web services. Recommendations of the National Institute of Standards and Technology. August 2007. http:/csrc, nist. gov/publications/nistpubs/800-95/ SP800-95. pdf.
  • 8Chun S A, Atluri V, Adam N R. Using Semantics for Policy - based Web Services Composition[J]. Journal of Distributed and Parallel Databases, 2005,18 ( 1 ):37-64.
  • 9陈凤珍,洪帆.基于任务的访问控制(TBAC)模型[J].小型微型计算机系统,2003,24(3):621-624. 被引量:25

二级参考文献17

  • 1胡建强,邹鹏,王怀民,周斌.Web服务描述语言QWSDL和服务匹配模型研究[J].计算机学报,2005,28(4):505-513. 被引量:108
  • 2杨胜文,史美林.一种支持QoS约束的Web服务发现模型[J].计算机学报,2005,28(4):589-594. 被引量:131
  • 3代钰,杨雷,张斌,高岩.支持组合服务选取的QoS模型及优化求解[J].计算机学报,2006,29(7):1167-1178. 被引量:91
  • 4Kim S M, Rosu M C. A survey of public Web services//Feldman S I, Uretsky M, Najork M, et al. eds. Proc. of the 13th Int'l Conf. on World Wide Web (WWW 2004). New York: ACM Press, 2004. 312-313
  • 5Tian M, Gramm A, Ritter H, et al. Efficient selection and monitoring of QoS-aware Web services with the WS-QoS framework //Liu J,Cercone N, eds. Proc. of the IEEE Int'l Conf. on Web Intelligence (WI 2004). New York: IEEE Press, 2004 : 152-158
  • 6Bryson J,Martin D, Mcllraith S, et al. Toward behavioral intelligence in the semantic Web. IEEE Computer, 2002,25 (11):48- 54
  • 7Cardoso J,Sheth A, Miller J, et al. Quality of service for workflows and Web service process. Journal of Web Semantic, 2004, 13:281-308
  • 8Zeng L Z, Benatallah B, Ngu A H H, et al. QoS-aware middleware for Web services composition. IEEE Transactions on Software Engineering, 2004,30 (5) : 311-327
  • 9Jensen K. An introduction to the Theoretical Aspects of Colored Petri Nets[J]. Lecture Notes in Computer Science, 1994,803: 230-272
  • 10Tan Z, Lin C, Yin H, et al. Approximate Performance Analysis of Web Sercices Flow Using Stochastic Petri Net[J]. Lecture Notes in Computer Science, 2004,3251 : 192-200

共引文献33

同被引文献52

  • 1戚正伟,尤晋元.基于细胞膜演算的Web服务事务处理形式化描述与验证[J].计算机学报,2006,29(7):1137-1144. 被引量:8
  • 2Smeureanu I, Diosteanu A. Knowledge Dynamics in Semantic Web Service Composition for Supply Chain Management Appli- cations[J]. Journal of Applied Quantitative Methods, 2010, 5 (1):1-13.
  • 3Shravani D, Suresh P V, Padmaja B R, et al. Web Services Security Architectures Composition and Contract Design Using RBAC [J]. International Journal on Computer Science and Engineering, 2010,8(2) : 2609-2615.
  • 4Zein R, Camille G, et al. Policy-Driven and Content-Based Web Services Security Gateway[J]. International Journal of Network Security, 2009,18 (1) : 253-265.
  • 5Mohamed S, Kamal B, et al. Web Services Discovery in Secure Collaboration Environments[J]. ACM Transactions on Internet Technology, 2007,8 (1): 52-74.
  • 6Christian E, Sebastian K, et al. Model Driven Development of Access Control Policies for Web Services[C]//Proc. of 2008 International Conference on Software Engineering and Applications. 2008:165- 172.
  • 7Hassan S G, Kadir W M, et al. AIMO.. An Effective Approach to Support Semantic Web Service Discovery and Composition[J]. International Journal of Computational Science,2009,3(2):133-150.
  • 8Dong Huang. Semantic Policy-Based Security Framework for Business Processes[C]//Proc. of 2005 Semantic Web and Policy Workshop. 2005 : 27-31.
  • 9Michael M, Wolter V, Meinel C. Access Control for Cross-Organisational Web Service Composition[J]. Journal of Information Assurance and Security,2007,2(2) : 155-160.
  • 10Charfi A, et al. Using Aspects for Security Engineering of Web Service Compositions[C]//Proc. of In Proc. of the IEEE International Conference on Web Services. 2005 : 59-66.

引证文献3

二级引证文献9

计算机科学
2010年 第2期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部