05854136

a

05854136 Sun, Haiyang Zhao, Weiliang Yang, Jian Managing conflict of interest in service composition. Meersman, Robert (ed.) et al., On the move to meaningful internet systems: OTM 2010. Confederated international conferences: CoopIS, IS, DOA and ODBASE, Hersonissos, Crete, Greece, October 25--29, 2010. Proceedings, Part I. Berlin: Springer (ISBN 978-3-642-16933-5/pbk). Lecture Notes in Computer Science 6426, 273-290 (2010). 2010 Berlin: Springer EN Authorization Conflict of Interest Composite Web Services

doi:10.1007/978-3-642-16934-2_20

Summary: Web services can be composed of other services in a highly dynamic manner. The existing role based authorization approaches have not adequately taken component services into account when managing access control for composite services. In this paper, we propose a service oriented conceptual model as an extension of role based access control that can facilitate the administration and management of access for service consumers as well as component services in composite web services. Various types of conflict of interest are identified due to the complicated relationships among service consumers and component services. A set of authorization rules are developed to prevent the conflict of interest. This research is a step forward to addressing the challenge in authorization in the context of composite web services.