Semantic Security Policy Matching in Service Oriented Architectures

Author

Modica, Giuseppe Di ; Tomarchio, Orazio

Author_Institution

Dipt. di Ing. Elettr., Elettron. e Inf., Univ. di Catania, Catania, Italy

fYear

2011

fDate

4-9 July 2011

Firstpage

399

Lastpage

405

Abstract

Cloud computing poses several new security and privacy challenges, mainly related to resource sharing, interoperability and dinamicity among different providers. Although policy specification languages address some of these challenges,many issues still have to be faced with. Policy matching is today performed by way of syntactical approaches, which may limit the selection of suitable services on the one hand, and the flexibility and the dinamicity of the matching process on the other one. In this work we propose a semantic approach that,by means of semantic annotations to WS-Policy documents,allows for an improved matching of security requirements and capabilities based on their actual meaning. The proposed approach has been validated through a case study that shows how a pure syntactic-based mechanism of WS-Policy would have failed in matching two actually compatible policies.

Keywords

cloud computing; security of data; service-oriented architecture; specification languages; WS-Policy; cloud computing; policy specification language; semantic annotation; semantic security policy matching; service oriented architecture; syntactic-based mechanism; Authentication; OWL; Ontologies; Protocols; Semantics; Web services; Security policy; Semantic matching; WS-Policy;

fLanguage

English

Publisher

ieee

Conference_Titel

Services (SERVICES), 2011 IEEE World Congress on

Conference_Location

Washington, DC

Print_ISBN

978-1-4577-0879-4

Electronic_ISBN

978-0-7695-4461-8

Type

conf

DOI

10.1109/SERVICES.2011.110

Filename

6012766