Abstract Web services collaborative environments are highly automatic, dynamic, and heterogeneous. These characteristics always lead to high risks of services for interaction participants. Hence, it becomes one of the most important things to guarantee that the private information in cross-domain services is not illegally collected, used, disclosed or stored when the Web services are required to combine secure composition. This paper proposes the privacy-aware role based access control model for Web services composition (WSC-PRBAC), which provides protection for private data of users in composite service. The element services are divided into local services and outside services. Because the local service is authorized by users, it is exactly different from other services in the composition. To avoid sending private information to other outside services directly, we define global roles to help access these data in local service. Using global roles can realize a more strict control of the private data. In the end, the experiment and analysis of the proposed model show its and efficiency.
[1]
Sanjiva Weerawarana,et al.
Unraveling the Web services web: an introduction to SOAP, WSDL, and UDDI
,
2002,
IEEE Internet Computing.
[2]
Haibin Zhu,et al.
Role-based consistency verification for privacy-aware Web services
,
2009,
2009 International Symposium on Collaborative Technologies and Systems.
[3]
David Gefen,et al.
The impact of personal dispositions on information sensitivity, privacy concern and trust in disclosing health information online
,
2010,
Decis. Support Syst..
[4]
Jorge Lobo,et al.
Privacy-aware role-based access control
,
2010
.
[5]
Jianling Sun,et al.
Minimal role mining method for Web service composition
,
2009,
Journal of Zhejiang University SCIENCE C.
[6]
Marco Casassa Mont.
Towards Scalable Management of Privacy Obligations in Enterprises
,
2006,
TrustBus.