|
|
|
|
A Model for Specification, Composition and Verification of Access Control Policies and Its Application toWeb Services
|
|
|
|
|
|
|
|
نویسنده
|
Derakhshandeh Zahra ,Tork Ladani Behrouz
|
|
منبع
|
the isc international journal of information security - 2011 - دوره : 3 - شماره : 2 - صفحه:103 -120
|
|
چکیده
|
Despite significant advances in the access control domain, requirements of new computational environments like web services still raise new challenges. lack of appropriate method for specification of access control policies (acps), composition, verication and analysis of them have all made the access control in the composition of web services a complicated problem. in this paper, a new independent formal model called constrained policy graph (cpg) for specification of acps and their composition as well as verification of conict or incompatibility among the acps is represented. it is shown how cpg can be used in modeling and verification of web service composition acps. also the application of cpg for modeling policies in bpel processes -as the most common composition method for web services- is illustrated.
|
|
کلیدواژه
|
Access Control Policy (ACP) ,Verification ,Web Service Composition ,BPEL ,Constrained Policy Graph (CPG)
|
|
آدرس
|
Sheikhbahaee University, Department of Computer Engineering, ایران, university of isfahan, Department of Computer Engineering, ایران
|
|
پست الکترونیکی
|
ladani@eng.ui.ac.ir
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Authors
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|