Semantic Similarity-Based Web Services Access Control

Due to the ever increasing number of web services available through the Internet, the privacy as a fundamental human right is endangered. Informed consent and collection of information are two important aspects while interacting on the Internet through web services. The ease of data access and the ready availability of it through Internet, made it easier for interested parties to intrude into the individual's privacy in unprecedented ways. The regulatory and technical solutions adopted to curb this have achieved only a limited success. The main culprits in this regard are the incompatibilities in the regulatory measures and standards. This research work focuses on privacy preserving access control for sharing sensitive information in the arena of web services, provides some recent outlooks towards the critical need of privacy aware access control technologies and a comprehensive review of the existing work in this arena. Besides, a novel framework for privacy aware access to web services is also provided.

Download Full-text

A Similarity Measure across Ontologies for Web Services Discovery

International Journal of Information Technology and Web Engineering ◽

10.4018/ijitwe.2016010102 ◽

2016 ◽

Vol 11 (1) ◽

pp. 22-43 ◽

Cited By ~ 9

Author(s):

Aissa Fellah ◽

Mimoun Malki ◽

Atilla Elci

Keyword(s):

Web Services ◽

Semantic Similarity ◽

Similarity Measure ◽

Development Process ◽

Semantic Web Services ◽

Service Oriented Architectures ◽

Semantic Similarity Measure ◽

Generic Framework ◽

Service Oriented ◽

Novel Algorithm

Given the critical and difficult nature of discovering Web services in the development process of service oriented architectures, several studies have been proposed to solve this problem. There is a real need to work for matching semantic Web services which use different ontologies. In responding to this need, measuring semantic similarity between SWS may be reduced to the calculation of similarity between ontological concepts. This work is a contribution to achieve semantic interoperability for Web services in a multi-ontology environment, for which the authors present a generic framework for Web services discovery. Here their focus is on the semantic similarity measure-based core of their framework and the authors present a novel algorithm for concepts matching between different ontologies. Results of the experiments confirm the viability of the semantic similarity measure.

Download Full-text

A Literature Review on Trust Management in Web Services Access Control

International Journal on Web Service Computing ◽

10.5121/ijwsc.2013.4301 ◽

2013 ◽

Vol 4 (3) ◽

pp. 1-19 ◽

Cited By ~ 2

Author(s):

Joseph Manoj R ◽

Chandrasekar A

Keyword(s):

Literature Review ◽

Web Services ◽

Access Control ◽

Trust Management

Download Full-text

Access Control and Information Flow Control for Web Services Security

International Journal of Information Technology and Web Engineering ◽

10.4018/ijitwe.2016010103 ◽

2016 ◽

Vol 11 (1) ◽

pp. 44-76 ◽

Cited By ~ 2

Author(s):

Saadia Kedjar ◽

Abdelkamel Tari ◽

Peter Bertok

Keyword(s):

Web Services ◽

Access Control ◽

Flow Control ◽

Information Flow ◽

Information Flow Control ◽

User Access ◽

Web Services Security ◽

Information Confidentiality ◽

Security Standards

With the advancement of web services technology, security has become an increasingly important issue. Various security standards have been developed to secure web services at the transport and message level, but application level has received less attention. The security solutions at the application level focus on access control which cannot alone ensure the confidentiality and integrity of information. The solution proposed in this paper consists on a hybrid model that combines access control (AC) and information flow control (IFC). The AC mechanism uses the concept of roles and attributes to control user access to web services' methods. The IFC mechanism uses labels to control how the roles access to the system's objects and verify the information flows between them to ensure the information confidentiality and integrity. This manuscript describes the model, gives the demonstration of the IFC model safety, presents the modeling and implementation of the model and a case study.

Download Full-text