Abstract
For the present growing distributed Web Services (WS) communication, security is of significant concern in the context of dynamically changing entities. It is a challenge to ensure the security goals such as authentication, authorisation and policy bounded exchange that exists between dynamic web-based applications. As the WS are enhanced to next level Semantic Web Services (SWS), the syntactic based security approach are to be improvised using additional domain knowledge called semantics between the entities (web services). Therefore, the incorporation of semantics will upgrade the quality of security management and provide solutions to the security challenges. The service semantics extracted as additional knowledge describes the web services with which one can check the certainty of entity authentication. The appropriate use of the semantic in policy representation and evaluation against a request is more suitable for challengeable security management of present web information system. Overall, the chapter discusses the incorporation of semantics in all attempts of seeking security solutions that lead to enrichment of interoperability between web services in a dynamic instant.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
References
Berners-Lee, T., Hendler, J., Lassila, O.: The semantic web. In: Scientific American, pp. 34–43, May 2001
Curbera, F., Nagy, W., et al.: Web services: why and how. In: Workshop on Object-Oriented Web Services—OOPSLA 2001, Tampa, Florida, USA (2001)
Patterson, R.S., Miller, J.A., Cardoso, J., Davis, M.: Bringing semantic security to semantic web services. In: Cardoso, J., Hepp, M., Lytras, M.D. (eds.) The Semantic Web. Semantic Web and Beyond Computing for Human Experience, Vol. 6. Springer, Boston, MA (2007)
IBM Corporation and Microsoft Corporation: Security in a Web Services World: A Proposed Architecture and Roadmap Version 1.0 (2002)
Verma, K., Aggarwal, R., Miller, J., Milnor, W.: Constraint driven web service composition in METEOR-S. In: Proceedings of the 2004 IEEE International Conference on Services Computing (SCC’04), Shanghai, China (September 2004), pp. 23–32 (2007)
Pennington, C., Cardoso, J., Miller, J.A., Patterson, R.S., Vasquez, I.: Introduction to Web Services
Shen, H., Cheng, Y.: A Semantic context-based model for mobile web services access control. I.J. Comput. Netw. Inf. Secur. 1, 18–25 (2011)
Horrocks, I., Patel-Schneider, P.F., Boley, H.: SWRL: A Semantic Web Rule Language Combining OWL and RuleML (2004). http://www.w3.org/Submission/SWRL/
Burstein, M., Bussler, C., Zaremba, M., Finin, T., Huhns, M.: A semantic web services architecture. IEEE Internet Comput., Sept–Oct 2005
Bajaj, S., Box, D.: Web Services Policy Framework (WSPolicy). ftp://www6.software.ibm.com/software/developer/library/wspolicy
Lopez, V, Mana, A., Mariatroya, J., Yague, V.: Applying the semantic web layers to access control. In: IEEE International Workshop on Web Semantics (WebS03), pp. 622–626 (2003)
Yag¨ue, M., Troya, J.: Semantic approach for access control in web services. In: Euroweb’02, eWiC. British Computer Society (2002)
Kagal, L., Paolucci, M., Srinivasan, N., Denker, G., Finin, T., Sycara, K.: Authorization and privacy for semantic web services. In: AAAI 2004 Spring Symposium on Semantic Web Services, March 2004
Shields, B., Molloy, O., Lyons, G., Duggan, J.: Securing web services using semantic web technologies. In: Proceedings Ofiasw-2005
Gondara, M.K.: Access control mechanisms for semantic webservices—a discussion on requirements and future directions. IJ-ETA-ETS 4(1), 338 (2011)
Amini, M., Arasteh, M.: Semantic and attribute-based access control model for virtual organizations. ISC Int. J. Inf. Secur. 7(1), 27–45 (2015)
Shen, H., Cheng, Y.: Semantic context-based model for mobile web services access control. I.J. Comput. Netw. Inf. Secur. 1, 18–25 (2011)
Kayes, A.S.M., Han, J., Colman, A.: A semantic policy framework for context-aware access control applications. In: 12th IEEE International Conference on TrustCom (2013)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Switzerland AG
About this chapter
Cite this chapter
Khan, F., Ramasamy, L.K. (2021). Web Services Security Using Semantic Technology. In: Al-Emran, M., Shaalan, K., Hassanien, A. (eds) Recent Advances in Intelligent Systems and Smart Applications. Studies in Systems, Decision and Control, vol 295. Springer, Cham. https://doi.org/10.1007/978-3-030-47411-9_22
Download citation
DOI: https://doi.org/10.1007/978-3-030-47411-9_22
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-47410-2
Online ISBN: 978-3-030-47411-9
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)