As the demand for data and information management continues to grow, so does the need to maintain and improve the security of databases, applications, and information systems. In order to effectively protect this data against evolving threats, an up-to-date understanding of the mechanisms for securing semantic Web technologies is essential.
Reviewing cutting-edge developments, Secure Semantic Service-Oriented Systems focuses on confidentiality, privacy, trust, and integrity management for Web services. It demonstrates the breadth and depth of applications of these technologies in multiple domains. The author lays the groundwork with discussions of concepts in trustworthy information systems and security for service-oriented architecture. Next, she covers secure Web services and applications—discussing how these technologies are used in secure interoperability, national defense, and medical applications.
Divided into five parts, the book describes the various aspects of secure service oriented information systems; including confidentiality, trust management, integrity, and data quality. It evaluates knowledge management and e-business concepts in services technologies, information management, semantic Web security, and service-oriented computing. You will also learn how it applies to Web services, service-oriented analysis and design, and specialized and semantic Web services.
The author covers security and design methods for service-oriented analysis, access control models for Web Services, identity management, access control and delegation, and confidentiality. She concludes by examining privacy, trust, and integrity, the relationship between secure semantic Web technologies and services, secure ontologies, and RDF. The book also provides specific consideration to activity management such as e-business, collaboration, healthcare, and finance.
Introduction
Services and Security Technologies
Secure Services
Trustworthy Services
Secure Semantic Services
Specialized Secure Services
Organization of This Book
Next Steps
SERVICES AND SECURITY TECHNOLOGIES
Service-Oriented Computing
Services
Service-Oriented Computing
SOA and Web Services
Service-Oriented Analysis and Design
Specialized Services
Semantic Web and Services
SOA and Web Services
Standards Organizations
SOA
Web Services
Overview
Web Services Protocol Stack
RESTful Web Services
Amazon Web Services
Service-Oriented Analysis and Design
Service-Oriented Life Cycle
Service-Oriented Analysis and Design
Service Modeling
SOAD Approaches
Specialized Web Services
Web Services for Data Management
Web Services for Complex Data Management
Web Services for Information Management
Web Services for Knowledge Management
Web Services for Activity Management
Domain Web Services
Emerging Web Services
Semantic Web Services
Layered Technology Stack
XML
RDF
Ontologies
Web Rules and SWRL
Semantic Web Services
Trustworthy Systems
Secure Systems
Dependable Systems
Web Security
SECURE SERVICES TECHNOLOGIES
Secure Service-Oriented Computing
Secure Services
Secure Service-Oriented Computing
Secure SOA and Web Services
Secure Service-Oriented Analysis and Design
Federated Identity Management
Access Control
Delegation Model
Secure SOA and Web Services
WS-Security
WS-* Security
Summary and Directions
Exercises
References
Secure Service-Oriented Analysis and Design
Secure Object-Oriented Analysis and Design
Secure Service-Oriented Life Cycle
Secure Service-Oriented Analysis and Design
Secure Service Modeling
Secure SOAD Approaches
Access Control for Web Services
SAML
XACML
Attribute-Based Access Control
Inference Control
Digital Identity Management
Single Sign-On and Federated Identity Management
Identity Metasystem and Information Card
Open-ID
Shibboleth
Liberty Alliance
Security Models for Web Services
Delegation Model
Information Flow Model
Multilevel Secure Web Services
DEPENDABLE WEB SERVICES
Trust Management and Web Services
Trust Management
Trust and Web Services
Privacy and Web Services
Privacy Management
Privacy Management and Web Services
Integrity Management, Data Provenance, and Web Services
Integrity, Data Quality, and Provenance
Integrity Management and Web Services
SECURE SEMANTIC WEB SERVICES
Secure Semantic Web and Web Services
Overview
Security for the Semantic Web
Privacy and Trust for the Semantic Web
Secure Semantic Web and Web Services
Security, XML, and Web Services
Overview
Example XML Document
XML Security Standards
Issues in XML Security
Policy Specification in XML
Access Control for XML Documents
Secure Publication of XML Documents
Secure XML Databases
XML, Security, and Web Services
Security, RDF, and Web Services
Example of an RDF Document
Issues in RDF Security
Policy Specification in RDF
Access Control
Secure RDF Databases
Security, RDF, and Web Services
Security, Ontologies, and Web Services
OWL Example
Securing Ontologies
Policy Specification in OWL
Access Control
Secure OWL Databases
Ontology for Policy and Data Integration
Security, Ontologies, and Web Services
Security, Rules, and Web Services
Nonmonotonic-Typed Multilevel Logic for Secure Data and
Knowledge Management
Securing Rules
Policy Specification Using Rules
Inference Problem and Policy Reasoning
Security, Rules, and Web Services
EMERGING SECURE WEB SERVICES
Web Services for Secure Data, Information, and Knowledge Management
Web Services for Secure Data Management
Secure Information Management
Secure Knowledge Management
Secure Geospatial, Multimedia, and Sensor Web Services
Overview
Secure Geospatial Semantic Web
Secure Multimedia Data Management
Secure Sensor Web Services
Web Services for Secure Activity Management
Secure E-Commerce
Secure Workflow and Collaboration
Secure Information Interoperability
Secure Information Sharing
Secure Social Networking
Secure Supply Chain
Secure Specialized Web Services
Secure Domain Web Services
Security for X as a Service
Security for Amazon Web Services
Secure Web Services for Cloud and Grid
Summary and Directions
About This Chapter
Summary of This Book
Directions for Secure Semantic Service-Oriented Information
Systems
Where Do We Go from Here?
Conclusion to Part V
Appendices:
Data Management Systems: Developments and Trends
Developments in Database Systems
Status, Vision, and Issues
Data Management Systems Framework
Building Information Systems from the Framework
Relationships Among the Texts
Database Management
Relational and Entity-Relationship Data Models
Architectural Issues
Database Design
Database Administration
Database Management System Functions
Distributed Databases
Heterogeneous Database Integration
Federated Databases
Client–Server Databases
Migrating Legacy Databases and Applications
Data Warehousing
Data Mining
Impact of the Web
Object Technology
Other Database Systems
Discretionary and Multilevel Security for Object Database Systems
Overview
Discretionary Security
Multilevel Security
Security for Object Request Brokers
Object Modeling for Secure Applications
Developments with Standards, Products, and Tools
Oasis Service Standards
Web Services Products
Semantic Web Standards
Semantic Web Products
Index
Each chapter begins with an Overview and concludes with a Summary, Exercises, and References
Biography
Professor Bhavani Thuraisingham, Ph.D., The University of Texas, Dallas, USA