1st Edition

Secure Semantic Service-Oriented Systems

By Bhavani Thuraisingham Copyright 2010
    463 Pages 232 B/W Illustrations
    by Auerbach Publications

    As the demand for data and information management continues to grow, so does the need to maintain and improve the security of databases, applications, and information systems. In order to effectively protect this data against evolving threats, an up-to-date understanding of the mechanisms for securing semantic Web technologies is essential.

    Reviewing cutting-edge developments, Secure Semantic Service-Oriented Systems focuses on confidentiality, privacy, trust, and integrity management for Web services. It demonstrates the breadth and depth of applications of these technologies in multiple domains. The author lays the groundwork with discussions of concepts in trustworthy information systems and security for service-oriented architecture. Next, she covers secure Web services and applications—discussing how these technologies are used in secure interoperability, national defense, and medical applications.

    Divided into five parts, the book describes the various aspects of secure service oriented information systems; including confidentiality, trust management, integrity, and data quality. It evaluates knowledge management and e-business concepts in services technologies, information management, semantic Web security, and service-oriented computing. You will also learn how it applies to Web services, service-oriented analysis and design, and specialized and semantic Web services.

    The author covers security and design methods for service-oriented analysis, access control models for Web Services, identity management, access control and delegation, and confidentiality. She concludes by examining privacy, trust, and integrity, the relationship between secure semantic Web technologies and services, secure ontologies, and RDF. The book also provides specific consideration to activity management such as e-business, collaboration, healthcare, and finance.

    Introduction
    Services and Security Technologies
    Secure Services
    Trustworthy Services
    Secure Semantic Services
    Specialized Secure Services
    Organization of This Book
    Next Steps

    SERVICES AND SECURITY TECHNOLOGIES

    Service-Oriented Computing
    Services
    Service-Oriented Computing
    SOA and Web Services
    Service-Oriented Analysis and Design
    Specialized Services
    Semantic Web and Services

    SOA and Web Services
    Standards Organizations
    SOA
    Web Services
    Overview
    Web Services Protocol Stack
    RESTful Web Services
    Amazon Web Services

    Service-Oriented Analysis and Design
    Service-Oriented Life Cycle
    Service-Oriented Analysis and Design
    Service Modeling
    SOAD Approaches

    Specialized Web Services
    Web Services for Data Management
    Web Services for Complex Data Management
    Web Services for Information Management
    Web Services for Knowledge Management
    Web Services for Activity Management
    Domain Web Services
    Emerging Web Services

    Semantic Web Services
    Layered Technology Stack
    XML
    RDF
    Ontologies
    Web Rules and SWRL
    Semantic Web Services

    Trustworthy Systems
    Secure Systems
    Dependable Systems
    Web Security

    SECURE SERVICES TECHNOLOGIES

    Secure Service-Oriented Computing
    Secure Services
    Secure Service-Oriented Computing
    Secure SOA and Web Services
    Secure Service-Oriented Analysis and Design
    Federated Identity Management
    Access Control
    Delegation Model

    Secure SOA and Web Services
    WS-Security
    WS-* Security
    Summary and Directions
    Exercises
    References

    Secure Service-Oriented Analysis and Design
    Secure Object-Oriented Analysis and Design
    Secure Service-Oriented Life Cycle
    Secure Service-Oriented Analysis and Design
    Secure Service Modeling
    Secure SOAD Approaches

    Access Control for Web Services
    SAML
    XACML
    Attribute-Based Access Control
    Inference Control

    Digital Identity Management
    Single Sign-On and Federated Identity Management
    Identity Metasystem and Information Card
    Open-ID
    Shibboleth
    Liberty Alliance

    Security Models for Web Services
    Delegation Model
    Information Flow Model
    Multilevel Secure Web Services

    DEPENDABLE WEB SERVICES

    Trust Management and Web Services
    Trust Management
    Trust and Web Services

    Privacy and Web Services
    Privacy Management
    Privacy Management and Web Services

    Integrity Management, Data Provenance, and Web Services
    Integrity, Data Quality, and Provenance
    Integrity Management and Web Services

    SECURE SEMANTIC WEB SERVICES

    Secure Semantic Web and Web Services
    Overview
    Security for the Semantic Web
    Privacy and Trust for the Semantic Web
    Secure Semantic Web and Web Services

    Security, XML, and Web Services
    Overview
    Example XML Document
    XML Security Standards
    Issues in XML Security
    Policy Specification in XML
    Access Control for XML Documents
    Secure Publication of XML Documents
    Secure XML Databases
    XML, Security, and Web Services

    Security, RDF, and Web Services
    Example of an RDF Document
    Issues in RDF Security
    Policy Specification in RDF
    Access Control
    Secure RDF Databases
    Security, RDF, and Web Services

    Security, Ontologies, and Web Services
    OWL Example
    Securing Ontologies
    Policy Specification in OWL
    Access Control
    Secure OWL Databases
    Ontology for Policy and Data Integration
    Security, Ontologies, and Web Services

    Security, Rules, and Web Services
    Nonmonotonic-Typed Multilevel Logic for Secure Data and
    Knowledge Management
    Securing Rules
    Policy Specification Using Rules
    Inference Problem and Policy Reasoning
    Security, Rules, and Web Services

    EMERGING SECURE WEB SERVICES

    Web Services for Secure Data, Information, and Knowledge Management
    Web Services for Secure Data Management
    Secure Information Management
    Secure Knowledge Management

    Secure Geospatial, Multimedia, and Sensor Web Services
    Overview
    Secure Geospatial Semantic Web
    Secure Multimedia Data Management
    Secure Sensor Web Services

    Web Services for Secure Activity Management
    Secure E-Commerce
    Secure Workflow and Collaboration
    Secure Information Interoperability
    Secure Information Sharing
    Secure Social Networking
    Secure Supply Chain

    Secure Specialized Web Services
    Secure Domain Web Services
    Security for X as a Service
    Security for Amazon Web Services
    Secure Web Services for Cloud and Grid

    Summary and Directions
    About This Chapter
    Summary of This Book
    Directions for Secure Semantic Service-Oriented Information
    Systems
    Where Do We Go from Here?
    Conclusion to Part V

    Appendices:

    Data Management Systems: Developments and Trends
    Developments in Database Systems
    Status, Vision, and Issues
    Data Management Systems Framework
    Building Information Systems from the Framework
    Relationships Among the Texts

    Database Management
    Relational and Entity-Relationship Data Models
    Architectural Issues
    Database Design
    Database Administration
    Database Management System Functions
    Distributed Databases
    Heterogeneous Database Integration
    Federated Databases
    Client–Server Databases
    Migrating Legacy Databases and Applications
    Data Warehousing
    Data Mining
    Impact of the Web
    Object Technology
    Other Database Systems

    Discretionary and Multilevel Security for Object Database Systems
    Overview
    Discretionary Security
    Multilevel Security
    Security for Object Request Brokers
    Object Modeling for Secure Applications

    Developments with Standards, Products, and Tools
    Oasis Service Standards
    Web Services Products
    Semantic Web Standards
    Semantic Web Products

    Index

    Each chapter begins with an Overview and concludes with a Summary, Exercises, and References

    Biography

    Professor Bhavani Thuraisingham, Ph.D., The University of Texas, Dallas, USA