Title :
A Certificate Driven Access Control Strategy for Service Composition and Its Analysis
Author :
Fan, Guisheng ; Yu, Huiqun ; Chen, Liqiong ; Liu, Dongmei
Author_Institution :
Dept. of Comput. Sci. & Eng., East China Univ. of Sci. & Technol., Shanghai, China
Abstract :
Service composition is an effective way to achieve value-added service, which has found wide application in various key areas. However, most access control techniques for service composition were in ad hoc fashion and fell short in precise notations. In this paper, we propose a certificate driven access control strategy for service composition. Petri nets are used to precisely define and model the different components of service composition. The access control strategy for service composition are proposed, which can dynamically adjust available service to meet the actual requirements. Based on this, theories of Petri nets help prove correctness of the access control strategy and the enforcement algorithm is given, thereby getting the service composition which can meet the functional requirements while meets the required security. The proposed method is applied to a real-world domain to show the feasibility and effectiveness.
Keywords :
Petri nets; authorisation; integrated software; Petri nets; certificate driven access control strategy; enforcement algorithm; functional requirements; service composition; value-added service; Access control; Petri nets; Semantics; Web services; Wireless sensor networks; Petri nets; Service composition; access control; security;
Conference_Titel :
Trust, Security and Privacy in Computing and Communications (TrustCom), 2011 IEEE 10th International Conference on
Conference_Location :
Changsha
Print_ISBN :
978-1-4577-2135-9
DOI :
10.1109/TrustCom.2011.220
