Security Ontology to Facilitate Web Service Description and Discovery

Annotation with security-related metadata enables discovery of resources that meet security requirements. This paper presents the NRL Security Ontology, which complements existing ontologies in other domains that focus on annotation of functional aspects of resources. Types of security information that could be described include mechanisms, protocols, objectives, algorithms, and credentials in various levels of detail and specificity. The NRL Security Ontology is more comprehensive and better organized than existing security ontologies. It is capable of representing more types of security statements and can be applied to any electronic resource. The class hierarchy of the ontology makes it both easy to use and intuitive to extend. We applied this ontology to a Service Oriented Architecture to annotate security aspects of Web service descriptions and queries. A refined matching algorithm was developed to perform requirement-capability matchmaking that takes into account not only the ontology concepts, but also the properties of the concepts.

[1]  Grit Denker,et al.  OWL-S Semantics of Security Web Services: a Case Study , 2004, ESWS.

[2]  Robert Meersman,et al.  On the Move to Meaningful Internet Systems 2004: CoopIS, DOA, and ODBASE , 2004, Lecture Notes in Computer Science.

[3]  John Mylopoulos,et al.  The Semantic Web - ISWC 2003 , 2003, Lecture Notes in Computer Science.

[4]  Timothy W. Finin,et al.  Authorization and privacy for semantic Web services , 2004, IEEE Intelligent Systems.

[5]  Zahir Tari,et al.  On the Move to Meaningful Internet Systems 2005: OTM 2005 Workshops, OTM Confederated International Workshops and Posters, AWeSOMe, CAMS, GADA, MIOS+INTEROP, ORM, PhDS, SeBGIS, SWWS, and WOSE 2005, Agia Napa, Cyprus, October 31 - November 4, 2005, Proceedings , 2005, OTM Workshops.

[6]  Katia Sycara,et al.  Adding OWL-S to UDDI, implementation and throughput , 2004 .

[7]  Myong H. Kang,et al.  An Approach for Semantic Query Processing with UDDI , 2005, OTM Workshops.

[8]  Amit P. Sheth,et al.  Semantic Web Services and Web Process Composition, First International Workshop, SWSWPC 2004, San Diego, CA, USA, July 6, 2004, Revised Selected Papers , 2005, SWSWPC.

[9]  R. Akkiraju,et al.  External matching in UDDI , 2004 .

[10]  Timothy W. Finin,et al.  Security for DAML Web Services: Annotation and Matchmaking , 2003, SEMWEB.

[11]  Kurt Geihs,et al.  Ranked Matching for Service Descriptions Using OWL-S , 2004, KiVS.

[12]  Myong H. Kang,et al.  Security Ontology for Annotating Resources , 2005, OTM Conferences.

[13]  Amit P. Sheth,et al.  Adding Semantics to Web Services Standards , 2003, ICWS.

[14]  Myong H. Kang,et al.  Adding OWL-S Support to the Existing UDDI Infrastructure , 2006, 2006 IEEE International Conference on Web Services (ICWS'06).

[15]  Jerry R. Hobbs,et al.  DAML-S: Semantic Markup for Web Services , 2001, SWWS.

[16]  Takahiro Kawamura,et al.  Importing the Semantic Web in UDDI , 2002, WES.

[17]  Matt Bishop,et al.  Computer Security: Art and Science , 2002 .

[18]  Charles P. Pfleeger,et al.  Security in computing , 1988 .

[19]  N. F. Noy,et al.  Ontology Development 101: A Guide to Creating Your First Ontology , 2001 .