Title :
Semantic Security Policy Matching in Service Oriented Architectures
Author :
Modica, Giuseppe Di ; Tomarchio, Orazio
Author_Institution :
Dipt. di Ing. Elettr., Elettron. e Inf., Univ. di Catania, Catania, Italy
Abstract :
Cloud computing poses several new security and privacy challenges, mainly related to resource sharing, interoperability and dinamicity among different providers. Although policy specification languages address some of these challenges,many issues still have to be faced with. Policy matching is today performed by way of syntactical approaches, which may limit the selection of suitable services on the one hand, and the flexibility and the dinamicity of the matching process on the other one. In this work we propose a semantic approach that,by means of semantic annotations to WS-Policy documents,allows for an improved matching of security requirements and capabilities based on their actual meaning. The proposed approach has been validated through a case study that shows how a pure syntactic-based mechanism of WS-Policy would have failed in matching two actually compatible policies.
Keywords :
cloud computing; security of data; service-oriented architecture; specification languages; WS-Policy; cloud computing; policy specification language; semantic annotation; semantic security policy matching; service oriented architecture; syntactic-based mechanism; Authentication; OWL; Ontologies; Protocols; Semantics; Web services; Security policy; Semantic matching; WS-Policy;
Conference_Titel :
Services (SERVICES), 2011 IEEE World Congress on
Conference_Location :
Washington, DC
Print_ISBN :
978-1-4577-0879-4
Electronic_ISBN :
978-0-7695-4461-8
DOI :
10.1109/SERVICES.2011.110
