Agarwal, S and Sprick, B (2005) Specification of access control and certification policies for semantic web services. In: E-commerce and Web Technologies, Proceedings Lecture Notes in Computer Science, 3590 . pp. 348-357.Full text not available from this repository. (Request a copy)
Web service providers specify access control policies to restrictaccess to their Web services. It turned out, that since the Web is anopen, distributed and dynamic environment, in which a centralcontrolling instance cannot be assumed, capability based access controlis most suitable for this purpose. However, since practically everyparticipant can certify capabilities defined in is/her ownterminology, determining the semantics of certified capabilities and the trustworthiness of certification authorities are two majorchallenges in such a setting. In this paper, we show, (1) how certification authorities and their certification policies can bemodeled semantically (2) how Web service providers can specify andcheck the consistency of their access control policies and (3) how endusers can check automatically, whether they have access to a Webservice.
|Item Type:||Journal Article|
|Additional Information:||Copyright for this article belongs to Springer-Verlag Berlin.|
|Department/Centre:||Division of Electrical Sciences > Computer Science & Automation (Formerly, School of Automation)|
|Date Deposited:||08 Dec 2005|
|Last Modified:||27 Aug 2008 11:36|
Actions (login required)