A Semantic-Aware Context-Based Access Control Framework for Mobile Web Services

2012 ◽  
Vol 195-196 ◽  
pp. 498-503 ◽  
Author(s):  
Hai Bo Shen ◽  
Yu Cheng
Keyword(s):  
Web Services ◽  
Access Control ◽  
Knowledge Base ◽  
Contextual Information ◽  
Control Mechanisms ◽  
Semantic Web Technologies ◽  
Mobile Web Services ◽  
Mobile Web ◽  
Access Control Policies ◽  
Control Framework

As computing technology becomes more pervasive and mobile services are deployed, applications will need flexible access control mechanisms. Unlike traditional approaches based on the identity/role for access control, access decisions for these applications will depend on the combination of the required attributes of users and the contextual information. This paper proposes a semantic-aware context-based access control framework (called SA_CBAC) to be applied in mobile web services environment by combining semantic web technologies with context-based access control mechanism. In order to handle context information in the framework, this paper proposes a context ontology to represent contextual information and employ it in the inference engine. This paper also focuses on access control policies and addresses these issues by representing context, user attributes and resource attributes in knowledge base and extending XACML to incorporate the knowledge base.

PolyOrBAC

2011 ◽  
pp. 901-923 ◽  
Author(s):  
Anas Abou El Kalam ◽  
Yves Deswarte
Keyword(s):  
Web Services ◽  
Access Control ◽  
Web Service ◽  
Service Access ◽  
Control Mechanisms ◽  
Model Checker ◽  
Control Framework ◽  
The One ◽  
Organization Based Access Control ◽  
The Web

With the emergence of Web Services-based collaborative systems, new issues arise, in particular those related to security. In this context, Web Service access control should be studied, specified and enforced. This work proposes a new access control framework for Inter-Organizational Web Services: “PolyOr- BAC”. On the one hand, the authors extend OrBAC (Organization-Based Access Control Model) to specify rules for intra- as well as inter-organization access control; on the other hand, they enforce these rules by applying access control mechanisms dedicated to Web Services. Furthermore, the authors propose a runtime model checker for the interactions between collaborating organizations, to verify their compliance with previously signed contracts. In this respect, not only their security framework handles secure local and remote accesses, but also deals with competition and mutual suspicion between organizations, controls the Web Service workflows and audits the different interactions. In particular, every deviation from the signed contracts triggers an alarm, the concerned parties are notified, and audits can be used as evidence for a judge to sanction the party responsible for the deviation.

PolyOrBAC

2011 ◽  
pp. 537-557
Author(s):  
Anas Abou El Kalam ◽  
Yves Deswarte
Keyword(s):  
Web Services ◽  
Access Control ◽  
Web Service ◽  
Service Access ◽  
Control Mechanisms ◽  
Model Checker ◽  
Control Framework ◽  
The One ◽  
Organization Based Access Control ◽  
The Web

With the emergence of Web Services-based collaborative systems, new issues arise, in particular those related to security. In this context, Web Service access control should be studied, specified and enforced. This work proposes a new access control framework for Inter-Organizational Web Services: “PolyOr- BAC”. On the one hand, the authors extend OrBAC (Organization-Based Access Control Model) to specify rules for intra- as well as inter-organization access control; on the other hand, they enforce these rules by applying access control mechanisms dedicated to Web Services. Furthermore, the authors propose a runtime model checker for the interactions between collaborating organizations, to verify their compliance with previously signed contracts. In this respect, not only their security framework handles secure local and remote accesses, but also deals with competition and mutual suspicion between organizations, controls the Web Service workflows and audits the different interactions. In particular, every deviation from the signed contracts triggers an alarm, the concerned parties are notified, and audits can be used as evidence for a judge to sanction the party responsible for the deviation.

Mobile Web services: a new agent-based framework

2006 ◽  
Vol 10 (3) ◽  
pp. 58-65 ◽  
Author(s):  
M. Adacal ◽  
A.B. Bener
Keyword(s):  
Web Services ◽  
Mobile Web Services ◽  
Agent Based ◽  
Mobile Web

Mobile Web Services for P2P Computing

2010 ◽  
pp. 133-157
Author(s):  
Fahad Aijaz
Keyword(s):  
Web Services ◽  
Performance Optimization ◽  
Mobile Nodes ◽  
P2p Computing ◽  
Mobile Web Services ◽  
Mobile Web ◽  
Service Oriented Computing ◽  
Service Oriented ◽  
Design Characteristics ◽  
And Performance

The Information Technology (IT) and Telecommunication (TelCo) sectors face enormous integration challenges, due to the prominent heterogeneity in existing systems. Service-oriented computing tackles such challenges by providing a fundamental platform that facilitates the convergence of distinct domains based on Web Services (WSs). With the mobility and technological advancements, service-oriented computing has been pushed towards the mobile sector enabling P2P Mobile Web Services (MobWSs) provisioning. In this work, we investigate the interaction, architecture and design characteristics of MobWSs for P2P computing. Here, the two MobWS interaction strategies are presented followed by the architectural discussion, enfolding server and client side components, of a resource-oriented MobWS framework. We follow REST design principles to propose an efficient way of architecting P2P MobWS systems, as an alternative to SOAP, enabling significant payload reduction and performance optimization in mobile servers. The detailed performance evaluation is also presented and compared to SOAP based on real-time measurements. By analyzing performance characteristics, we show that REST is a promising technique to architect P2P MobWS systems for resource-constraint mobile nodes.

Sign in / Sign up

Export Citation Format

Share Document