Semantic Authorization of Mobile Web Services Semantic Authorization of Mobile Web Services

With the recent developments in the cellular world, the high-end mobile phones and PDAs are becoming pervasive and are being used in different application domains. Integration of the web services and cellular domains lead to the new application domain, mobile web services. Mobile web service provisioning offers many of its applications in domains like e-commerce, collaborative applications, social systems, mobile community support etc. This paper introduces the concept of mobile web services, inspects possible technical usage scenarios, and elaborates on commercial applications and usage scenarios based on previously conducted case studies. We have designed prototypes and conducted experiments towards quantitative feasibility study for this emerging research area of mobile web services, especially focusing on the secure communication and access control. In order to provide proper qualitative justification of security measures, we evaluated security threats in mobile environments, reviewed conventional security requirements for web services, analyzed securitysensitive characteristics of mobile web services, and finally defined critical success factors for controlling access to mobile web services. We proposed to utilize distributed architectures of semantics-based authorization mechanism as an adequate access control solution for mobile web service provisioning.

[1]  Javier López,et al.  A metadata-based access control model for web services , 2005, Internet Res..

[2]  Satish Narayana Srirama,et al.  Publishing and Discovery of Mobile Web Services in Peer to Peer Networks , 2010, MSPE.

[3]  H. Lan,et al.  SWRL : A semantic Web rule language combining OWL and ruleML , 2004 .

[4]  Yiwei Cao,et al.  Mobile Web Services for Collaborative Learning , 2006, 2006 Fourth IEEE International Workshop on Wireless, Mobile and Ubiquitous Technology in Education (WMTE'06).

[5]  Siddharth Bajaj,et al.  Web Services Federation Language (WS- Federation) , 2003 .

[6]  Daniel Roth,et al.  Web Services Policy Framework (WS- Policy) , 2002 .

[7]  Niklas Johansson,et al.  Revisiting Amit and Zott's model of value creation sources: The SymBelt Customer Center case , 2006, J. Theor. Appl. Electron. Commer. Res..

[8]  Matthias Jarke,et al.  Mobile Host: A Feasibility Analysis of Mobile Web Service Provisioning , 2006, UMICS.

[9]  Anton Naumenko Semantics-based Access Control - Ontologies and Feasibility Study of Policy Enforcement Function , 2007, WEBIST.

[10]  Petr Jan Horn,et al.  Autonomic Computing: IBM's Perspective on the State of Information Technology , 2001 .

[11]  Anton Naumenko,et al.  A Security Framework for Smart Ubiquitous Industrial Resources , 2007, IESA.

[12]  Anton Naumenko,et al.  Strategic Industrial Alliances in Paper Industry: XML- vs Ontology-Based Integration Platforms. , 2005 .

[13]  James Snell,et al.  Introduction to Web services architecture , 2002, IBM Syst. J..

[14]  Tim Moses,et al.  EXtensible Access Control Markup Language (XACML) version 1 , 2003 .

[15]  James A. Hendler,et al.  The Semantic Web" in Scientific American , 2001 .

[16]  Jay F. Nunamaker,et al.  Systems Development in Information Systems Research , 1990, J. Manag. Inf. Syst..

[17]  Giovanni Della-Libera,et al.  Web Services Trust Language (WS-Trust) , 2002 .

[18]  Lorrie Faith Cranor,et al.  The platform for privacy preferences , 1999, CACM.

[19]  Steve Anderson,et al.  Web Services Secure Conversation Language (WS-SecureConversation) , 2005 .

[20]  Geoff Coulson,et al.  Free Riding on Gnutella Revisited: The Bell Tolls? , 2005, IEEE Distributed Syst. Online.

[21]  Ulrike Lechner,et al.  Business Models and System Architectures of Virtual Communities: From a Sociological Phenomenon to Peer-to-Peer Architectures , 2002, Int. J. Electron. Commer..

[22]  Matthias Jarke,et al.  Mobile Web Service Provisioning , 2006, Advanced Int'l Conference on Telecommunications and Int'l Conference on Internet and Web Applications and Services (AICT-ICIW'06).

[23]  Tim O'Reilly,et al.  What is Web 2.0: Design Patterns and Business Models for the Next Generation of Software , 2007 .

[24]  Nadya Belov,et al.  Wireless Internet Collaboration System on Smartphones , 2005, CAiSE Workshops.

[25]  Jeffrey O. Kephart,et al.  The Vision of Autonomic Computing , 2003, Computer.