Secure Semantic Aware Middleware: a Security Based Semantic Access Control for Web Services

Abstract

Semantic Access Control model is based on the semantic properties of the resources to be controlled, properties of the clients that request access to them, semantics about the context and lastly, semantics about the attribute certificates trusted by the access control system. Many algorithms and techniques have been developed for the Semantic Access Control. Our previous work introduced a fine grained access control mechanism for accessing semantic web services. However, the policy based semantic access control method does not have any security in the user contribution i.e., the request user may be valid user or invalid user. So, there is more chance for the invalid users to get continuous access to the web services and also they hacks more information from the web services. Thus, such drawbacks in our previous work need to be reduced for attaining a high-quality performance in semantic web services. Hence, a security model is proposed in this paper to include in the security framework to investigate the validity of users. The valid number of users are registered and stored in the registration service. If new user request is obtained, the user’s request query and the registration service are processed to find whether this requested user is a valid or invalid user. The simulation results show that the secure semantic aware fine grained web services accessing framework is robust against the accessing of invalid users without any compromise in the performance of the semantic module.