A trust and context aware access control model for web services conversations

Authors:
Marijke Coetzee;J. H. P. Eloff
Affiliations:
Academy for Information Technology, University of Johannesburg, Johannesburg, South-Africa;Department of Computer Science, University of Pretoria, Pretoria, South-Africa
Venue:
TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business
Year:
2007

Citing 15
Cited 1

Fine grained access control for SOAP E-services

Proceedings of the 10th international conference on World Wide Web
The role of trust management in distributed systems security

Secure Internet programming
DATALOG with Constraints: A Foundation for Trust Management Languages

PADL '03 Proceedings of the 5th International Symposium on Practical Aspects of Declarative Languages
A Logical Language for Expressing Authorizations

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
A Role based Access Control for Web Services

SCC '04 Proceedings of the 2004 IEEE International Conference on Services Computing
A Trust-Based Context-Aware Access Control Model for Web-Services

Distributed and Parallel Databases
Trust Negotiation as an Authorization Service forWeb Services

ICDEW '06 Proceedings of the 22nd International Conference on Data Engineering Workshops
TrustBAC: integrating trust relationships into the RBAC model for access control in open systems

Proceedings of the eleventh ACM symposium on Access control models and technologies
Access control enforcement for conversation-based web services

Proceedings of the 15th international conference on World Wide Web
An Attribute-Based Access Control Model for Web Services

PDCAT '06 Proceedings of the Seventh International Conference on Parallel and Distributed Computing, Applications and Technologies
An integrated approach to federated identity and privilege management in open systems

Communications of the ACM - Spam and the ongoing battle for the inbox
Introduction to web services architecture

IBM Systems Journal
Protocol engineering for web services conversations

Engineering Applications of Artificial Intelligence
Conceptual modeling of web service conversations

CAiSE'03 Proceedings of the 15th international conference on Advanced information systems engineering
A service-oriented trust management framework

AAMAS'02 Proceedings of the 2002 international conference on Trust, reputation, and security: theories and practice

A Semantic-Aware Attribute-Based Access Control Model for Web Services

ICA3PP '09 Proceedings of the 9th International Conference on Algorithms and Architectures for Parallel Processing

Quantified Score

Hi-index	0.00

Visualization

Abstract

The design of effective access control models, to meet the unique challenges posed by the web services paradigm, is a current research focus. Despite recent advances in this field, solutions are generally limited to controlling access to single operations of request-response nature. To ensure that a service is used appropriately, message exchanges can be grouped into conversations consisting of related messages that are governed by sequence constraints. Towards addressing the security of message exchanges, this paper describes an access control model for web services conversations. A trust and context aware access control model is presented that promotes the seamless execution of operations contained by web services conversations.