摘要
针对Web服务多域环境下组合服务的访问控制策略合成问题,首先提出基于属性的Web服务访问控制策略描述框架,并结合原子属性值限制的属性描述方法,对服务访问控制策略进行了形式化表达。然后,通过分析服务组合描述文档中的控制结构,并研究访问控制策略合成算子和访问控制策略规则的合成运算,提出组合Web服务访问控制策略合成方法,实现了组合服务访问控制策略的合成。最后,结合实例给出组合Web服务的访问控制策略合成流程,验证了合成方法的实用性。
For access control policy composition problem of composite services in Web services multi-domain environment,the attribute based Web services access control policy description framework was proposed and the services access control policies were formally expressed with atomic attribute value constraint.After analyzing the control structures in services composition description document,combining the access control policy composition operators with access control policy rule composition operation,the composite Web services access control policies composition method was designed to compose the composite service access control policies.Finally,the Web services access control policy composition process was given and the practicability of composition method was verified through a case.
出处
《计算机应用》
CSCD
北大核心
2012年第12期3430-3434,共5页
journal of Computer Applications
基金
国家973计划项目(2011CB311801)
河南省科技创新人才计划项目(114200510001)
关键词
WEB服务
服务组合
访问控制
策略合成
Web services
services composition
access control
policy composition
