组合Web服务访问控制技术研究综述

计算机科学 ›› 2011, Vol. 38 ›› Issue (10): 13-15.

组合Web服务访问控制技术研究综述

上超望,赵呈领,刘清堂,王艳凤

(华中师范大学信息技术系武汉430079)

出版日期:2018-11-16 发布日期:2018-11-16
基金资助:
本文受湖北省自然科学基金(2009CDA135)，国家教育规划课题(BCA 100024) ,武汉两型社会建设制度创新专项资金，华‘l，师范大学自主科研基金专项项目"Web服务安全组合‘l，的访问控制技术研究”资助。

Survey on Access Control Technology of Web Services Composition

SHANG Chao-wang,ZHAO Cheng-ling.LIU Qing-tang,WANG Yan-feng

Online:2018-11-16 Published:2018-11-16

摘要/Abstract

摘要： 访问控制技术是保证Web服务组合增值应用安全性和可靠性的关键技术。主要论述了组合Web服务访问控制技术的研究现状及其问题。首先论述了组合Web服务安全面临的挑战;接着基于层的视角对组合Web服务安全问题进行了分析;然后从组合Web服务访问控制体系构架、原子安全策略的一致性协同和业务流程访问控制3个方面分析了组合W cb服务访问控制核心技术研究的进展;最后，结合已有的研究成果，指出了目前研究的不足以及未来的发展趋势。

关键词: 组合Web服务，访问控制，框架，安全策略，业务流程

Abstract: Access control is one of the key technologies in secure and reliable Web services composition valucadded application. This paper briefly reviewed the state of the research for access control in Web services composition environment. We firstly discussed the challenges to Web services secure composition. Subsequently we analysed the security problems concerning Web services composition from a hierarchical perspective. Then, we discussed the research progress on the key access control technology from three respects of Web services composition access control architecture,atomic security policy consistent coordination and business process authorization. Finally, the conclusion was given andthe problems were pointed out,which should be resolved in future research.

Key words: Web services composition, Access control, Architecture, Security policy, Business process

上超望,赵呈领,刘清堂,王艳凤. 组合Web服务访问控制技术研究综述[J]. 计算机科学, 2011, 38(10): 13-15. https://doi.org/

SHANG Chao-wang,ZHAO Cheng-ling.LIU Qing-tang,WANG Yan-feng. Survey on Access Control Technology of Web Services Composition[J]. Computer Science, 2011, 38(10): 13-15. https://doi.org/

参考文献

Metrics

Viewed

Full text

Abstract

Cited

Shared

Discussed