Abstract | ||
---|---|---|
WS-Policy (Web Services Policy) and related security specifications provide a standard way to describe the security requirements and capabilities of both web services consumers and providers. The specification of the security requirements and capabilities of a service and its consumer in policy alternatives, and their combination to find the applicable policy is difficult. Currently, security policy compatibility is difficult to achieve as the algorithm only considers the syntactic evaluation of policy alternatives, leading to inconsistent policies that required further investigation. The evaluation of the security provided by a set of policy alternatives, the related effect that policy alternatives and environmental influences have on each other is not considered. This paper presents a design of an evaluation tool that can assist administrators to determine the level of security supported by a web services security policy. The design employs domain vocabularies, fuzzy techniques and domain-specific preferences. |
Year | Venue | Keywords |
---|---|---|
2010 | Internet Technology and Secured Transactions | Web services,security of data,Web services security policy assistant,domain vocabularies,domain-specific preferences,fuzzy techniques,policy alternatives,security evaluation,security requirements,security specifications,syntactic evaluation |
Field | DocType | ISBN |
Network security policy,Computer science,Computer security,Security engineering,Security service,Web application security,Security information and event management,Security policy,Computer security model,WS-Policy | Conference | 978-0-9564263-6-9 |
Citations | PageRank | References |
0 | 0.34 | 5 |
Authors | ||
2 |
Name | Order | Citations | PageRank |
---|---|---|---|
Tristan Lavarack | 1 | 0 | 0.34 |
Marijke Coetzee | 2 | 35 | 14.10 |