UDDI and SAML based framework for Secure Semantic Web Services
Main Article Content
Abstract
A Semantic Web Service (SWS) is a software system designed to support interoperable application-to-application interactions over the
Internet. SWSs are based on a set of XML standards, such as Web Service Description Language (WSDL), Simple Access Object Protocol
(SOAP) and Universal Description, Discovery and Integration (UDDI). So far these services and the corresponding provider’s URLs are
advertised on specific UDDIs. As such, after finding the requested service any given client contacts the right provider to negotiate the service
access procedure. These first contacts between clients and providers are usually not protected (Encrypted), the non-possession of public key
infrastructure (PKI) especially by clients can be considered among the main cause behind this security problem. In this paper, we propose a
securing approach based on PKI infrastructure and UDDI functioning, which must play in addition to its initial missions the role of a trust centre,
leading to adequate security for semantic web services. The authentication and authorization information is exchanged using SAML (Security
Assertion Markup Language), ratified by OASIS standards.
Â
Â
Keywords: Semantic Web Service, PKI, UDDI, Security, SAML
Downloads
Article Details
COPYRIGHT
Submission of a manuscript implies: that the work described has not been published before, that it is not under consideration for publication elsewhere; that if and when the manuscript is accepted for publication, the authors agree to automatic transfer of the copyright to the publisher.
Authors who publish with this journal agree to the following terms:
- Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of the work's authorship and initial publication in this journal.
- Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgment of its initial publication in this journal.
- Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work
- The journal allows the author(s) to retain publishing rights without restrictions.
- The journal allows the author(s) to hold the copyright without restrictions.