Verication of Service Access Control Policies : A Description Logic Approach