Abstract

Web Service is a reusable component which has set of related functionalities that service requesters can programmatically access from the service provider and manipulate through the Web. One of the main security issue is to secure web services from the malicious requesters. Since trust plays an important role in many kinds of human communication, it allows people to work under insecurity and with the risk of negative cost, many researchers have proposed different trust based web services access control model to prevent malicious requesters. In this literature review, various existing trust based web services access control model have been studied also investigated how the concept of a trust level is used in the access control policy of a service provider to allow service requester to access the web services.

Highlights

  • A Web Services is a method which is used to communicate between two electronic devices over the web

  • Attribute-Based Access Control (ABAC) models add more dynamicity to the traditional Role-Based Access Control (RBAC) systems [2].These models make use of attributes owned by the clients, the providers, and some other attributes related to the environment

  • A certtable is defined by invoking the trust management service’s method createCerttable(name, colDefs, constraint, issuers, fetchFrom, createCerttable(name, colDefs, constraint, issuers, fetchFrom, releaseTo) createView(name, viewDef) grant(operation, resource, grantees, grantName) revoke(grantName) setPermView(service, method, view) where name is the name of the certtable, colDefs is a comma-separated list of column definitions of the form name type, constraint is a Boolean expression of the form allowed in the check clause in an SQL create table statement, and issuers specifies the trusted sources for information stored in this table

Read more

Summary

A Literature Review on Trust Management in Web Services Access Control

Associate Professor, Department of MCA, St.Joseph’s College of Engineering, Chennai, India, 2Professor, Department of CSE, St.Joseph’s College of Engineering, Chennai, India. Web Service is a reusable component which has set of related functionalities that service requesters can programmatically access from the service provider and manipulate through the Web. One of the main security issue is to secure web services from the malicious requesters. Since trust plays an important role in many kinds of human communication, it allows people to work under insecurity and with the risk of negative cost, many researchers have proposed different trust based web services access control model to prevent malicious requesters. Various existing trust based web services access control model have been studied investigated how the concept of a trust level is used in the access control policy of a service provider to allow service requester to access the web services

INTRODUCTION
Web Services Architecture
Web Services Security
WEB SERVICES ACCESS CONTROL
Access Control Constraints and Actions
CONCEPTS OF TRUST MANAGEMENT
Features of Trust
Need of Trust Management
Trust Sources
Trust Computation
Initial Trust and limits
Group trustor
Individual
Study of Existing Trust Based Access Models
Trust Metrics for service
Trust Metrics for service provider
TRUST POLICY REPRESENTATION
FUTURE WORK
CONCLUSION
Full Text
Published version (Free)

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call