On finding the strongly connected components in a directed graph
Information Processing Letters
Modal and temporal logics for processes
Proceedings of the VIII Banff Higher order workshop conference on Logics for concurrency : structure versus automata: structure versus automata
An access control language for web services
SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Web Service Conversation Modeling: A Cornerstone for E-Business Automation
IEEE Internet Computing
An efficient algorithm for computing bisimulation equivalence
Theoretical Computer Science
Trust-serv: model-driven lifecycle management of trust negotiation policies for web services
Proceedings of the 13th international conference on World Wide Web
A Role based Access Control for Web Services
SCC '04 Proceedings of the 2004 IEEE International Conference on Services Computing
Database Security-Concepts, Approaches, and Challenges
IEEE Transactions on Dependable and Secure Computing
Automatic composition of transition-based semantic web services with messaging
VLDB '05 Proceedings of the 31st international conference on Very large data bases
Protocol engineering for web services conversations
Engineering Applications of Artificial Intelligence
When are two web services compatible?
TES'04 Proceedings of the 5th international conference on Technologies for E-Services
Interactive credential negotiation for stateful business processes
iTrust'05 Proceedings of the Third international conference on Trust Management
Automatic web services composition in trustaware communities
Proceedings of the 3rd ACM workshop on Secure web services
Security-by-contract for web services
Proceedings of the 2007 ACM workshop on Secure web services
Framework for Web service query algebra and optimization
ACM Transactions on the Web (TWEB)
Beyond User-to-User Access Control for Online Social Networks
ICICS '08 Proceedings of the 10th International Conference on Information and Communications Security
Computer Networks: The International Journal of Computer and Telecommunications Networking
Toward Trustworthy Web Services - Approaches, Weaknesses and Trust-By-Contract Framework
WI-IAT '09 Proceedings of the 2009 IEEE/WIC/ACM International Joint Conference on Web Intelligence and Intelligent Agent Technology - Volume 03
An extended XACML model to ensure secure information access for web services
Journal of Systems and Software
Minimal privacy authorization in web services collaboration
Computer Standards & Interfaces
Managing conflict of interest in service composition
OTM'10 Proceedings of the 2010 international conference on On the move to meaningful internet systems - Volume Part I
ACConv -- An Access Control Model for Conversational Web Services
ACM Transactions on the Web (TWEB)
A trust and context aware access control model for web services conversations
TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business
Hi-index | 0.00 |
Service Oriented Computing is emerging as the main approach to build distributed enterprise applications on the Web. The widespread use of Web services is hindered by the lack of adequate security and privacy support. In this paper, we present a novel framework for enforcing access control in conversation-based Web services. Our approach takes into account the conversational nature of Web services. This is in contrast with existing approaches to access control enforcement that assume a Web service as a set of independent operations. Furthermore, our approach achieves a tradeoff between the need to protect Web service's access control policies and the need to disclose to clients the portion of access control policies related to the conversations they are interested in. This is important to avoid situations where the client cannot progress in the conversation due to the lack of required security requirements. We introduce the concept of k-trustworthiness that defines the conversations for which a client can provide credentials maximizing the likelihood that it will eventually hit a final state.