Secure Semantic Aware Middleware: a Security Based Semantic Access Control for Web Services

(*) Corresponding author

Authors' affiliations

DOI's assignment:
the author of the article can submit here a request for assignment of a DOI number to this resource!
Cost of the service: euros 10,00 (for a DOI)


Semantic Access Control model is based on the semantic properties of the resources to be controlled, properties of the clients that request access to them, semantics about the context and lastly, semantics about the attribute certificates trusted by the access control system. Many algorithms and techniques have been developed for the Semantic Access Control. Our previous work introduced a fine grained access control mechanism for accessing semantic web services. However, the policy based semantic access control method does not have any security in the user contribution i.e., the request user may be valid user or invalid user. So, there is more chance for the invalid users to get continuous access to the web services and also they hacks more information from the web services. Thus, such drawbacks in our previous work need to be reduced for attaining a high-quality performance in semantic web services. Hence, a security model is proposed in this paper to include in the security framework to investigate the validity of users. The valid number of users are registered and stored in the registration service. If new user request is obtained, the user’s request query and the registration service are processed to find whether this requested user is a valid or invalid user. The simulation results show that the secure semantic aware fine grained web services accessing framework is robust against the accessing of invalid users without any compromise in the performance of the semantic module.
Copyright © 2013 Praise Worthy Prize - All rights reserved.


Security; Semantic; Fine-Grained; Web Services; User; Service Providers; Access

Full Text:



Cecilia Ionita and Sylvia L. Osborn, “Specifying an Access Control Model for Ontologies for the Semantic Web,” Lecture Notes in Computer Science, pp. 73-85, November 15, 2005.

Alexander Maedche and Steffen Staab, "Ontology Learning for the Semantic Web," IEEE Intelligent Systems, Vol. 16, No. 2, pp. 72-79, 2001

KarimHeidari, SerajodinKatebi and Ali Reza Mahdavi Far, "New Methods for E-Commerce Databases Designing in Semantic Web Systems (Modern Systems)," World Academy of Science, Engineering and Technology, Vol. 51, 2009

MinalBhise, "Automation of Semantic Web based Digital Library using Unified Modeling Language," International Journal of Recent Trends in Engineering, Vol. 1, No. 2, 2009.

R. Garcia-Castro, A. Gomez-Perez and O. Munoz-Garcia, "The Semantic Web Framework: A Component-Based Framework for the Development of Semantic Web Applications," in proceedings of 19th IEEE International Conference on Database and Expert Systems Application, pp. 185-189, 1-5 September, Turin, 2008.

Francisco Echarte, Jose Javier Astrain, Alberto Cordoba and Jesus Villadangos "Self-adaptation of Ontologies to Folksonomies in Semantic Web," World Academy of Science, Engineering and Technology, Vol. 43, 2008

A. Uszok, J.M. Bradshaw, R. Jeffers, M. Johnson, A. Tate, J. Dalton, S. Aitken, “Policy and contract management for semantic web services,” in Proceedings of Semantic Web Services Symposium, Stanford, California, 2004.

Diego ZuquimGuimaraes Garcia and Maria Beatriz Felgar de Toledo, "Web service security management using semantic web techniques," in Proceedings of the ACM symposium on Applied computing, pp. 2256-2260, March 16 - 20, Fortaleza, Ceara, Brazil, 2008.

A. Barbir, “Web Services Security: An Enabler of Semantic Web Services,” in Proceedings of Business Agents and the Semantic Web, 2003.

SudhirAgarwal and Barbara Sprick, "Specification of Access Control and Certification Policies for Semantic Web Services", In proceedings of the 6th International Conference on Electronic Commerce and Web Technologies, vol. 3590, pp. 348-357,Copenhagen, Danemark, 2005.

LalanaKagal, Massimo Paolucci, Naveen Srinivasan, Grit Denker, Tim Finin and Katia Sycara, "Authorization and Privacy for Semantic Web Services", IEEE Intelligent Systems, vol.19, No.4, pp.50 - 56, 2004.

Shin Moonsoo and Jung Mooyoung, "MANPro: mobile agent-based negotiation process for distributed intelligent manufacturing," International journal of production research Vol. 42, No. 2, pp. 303-320, 2004

Jun Zhai, Yiduo Liang, Yi Yu and Jiatao Jiang, "Semantic Information Retrieval Based on Fuzzy Ontology for Electronic Commerce," Journal Of Software, Vol. 3, No. 9, pp. 20-27, DECEMBER 2008

S. Javanmardi, M. Amini and R. Jalili, "An Access Control Model for Protecting Semantic Web Resources," in proceedings of the 2nd International Semantic Web Policy Workshop, pp. 32-56, Georgia, USA, 2006.

Mariemma I. Yague, Antonio Mana, Javier Lopez and Jose M. Troya, "Applying the Semantic Web Layers to Access Control," in proceedings of the 14th International Workshop on Database and Expert Systems Application, pp. 622, September 01 - 05,2003.

NoorollahiRavari, MortezaAmini and RasoolJalili, "A Temporal Semantic-Based Access Control Model," in the 13th International CSI Computer Conference, pp. 559–568, Kish Island, Iran, 2008.

Vijay SrinivasAgneeswaran, RammohanNarendula and Karl Aberer, "Peer-to-Peer Issue Tracking System: Challenges and Solution," in proceedings of Software Engineering (Workshops), pp. 77-81, 2008.

U.U.S.K. Rajapaksha and N. Kodagoda, "Semantic Web Search and Ontology Ranking Algorithm," in proceedings of Semantic Web Search, Vol. 2, pp. 25-29, 2008

“Requirements-based Access Control Analysis and Policy Specification (ReCAPS),”

Jian Li and William K. Cheung, "Query Rewriting for Access Control on Semantic Web," in proceedings of the 5th VLDB workshop on Secure Data Management, pp. 151-168, Auckland, New Zealand, 2008

BhavaniThuraisingham, "Security standards for the semantic web," Computer Standards & Interfaces, Vol. 27, No. 3, pp.257-268, 2005

HaiboShen, "A Semantic-Aware Attribute-Based Access Control Model for Web Service," in proceedings of the 9th International Conference on Algorithms and Architectures for Parallel Processing, pp. 693 - 703, June 08 - 11, Taipei, Taiwan, 2009.

Jie Lu, Chao Wang, Guangquan Zhang and Jun Ma, "Collaborative management of web ontology data with flexible access control," Expert Systems with Applications, 26 November, 2009

Angel Garcia-Crespoa, Juan Miguel Gomez-Berbis, Ricardo Colomo-Palacios and andGinerAlor-Hernandez, "SecurOntology: A semantic web access control framework," Computer Standards & Interfaces, 28 October, 2009.

AnandDersingh, Ramiro Liscano and Allan Jost, "Utilizing Semantic Knowledge for Access Control in Pervasive and Ubiquitous System," Proceedings of the IEEE International Conference on Wireless & Mobile Computing, Networking & Communication, pp. 435-441, October 12 - 14, 2008

Moussa Amir Ehsan, MortezaAmini and RasoolJalili, "A semantic-based access control mechanism using semantic technologies," in proceedings of the 2nd international conference on Security of information and network, October 06 - 10, Famagusta, North Cyprus, 2009.

Barbara Carminati, Elena Ferrari, Raymond Heatherly, Murat Kantarcioglu and BhavaniThuraisingham, "A semantic web based framework for social network access control," in proceedings of the 14th ACM symposium on Access control models and technologies, pp. 177-186, June 03 - 05, Stresa, Italy, 2009.

Moussa A. Ehsan, MortezaAmini and RasoolJalili, "Handling Context in a Semantic-Based Access Control Framework," in proceedings of the 2009 International Conference on Advanced Information Networking and Applications Workshops , pp. 103-108, May 26 - 29, 2009

M. Ramalingam and R. M. S. Parvathi, "Policy-Based Semantic Access Control Framework for Fine-Grained Access in Semantic Web Services", European Journal of Scientific Research, Vol.74, No.1, pp. 154-163, 2012

D. Kanellopoulos, S. Kots, Managing the Quality of Small Hospitality Businesses via Semantic Web Services, (2007) International Review on Computers and Software (IRECOS), 2 (1), pp. 1-9.

D. Çelik, A. Elçi, Ontology-based QoS Model for Appropriate Selection and Composition of Web Services, (2008) International Review on Computers and Software (IRECOS), 3 (2), pp. 176-184.

Ganchev, I., Stojanov, S., Meere, D., O'Droma, M., InfoStation-based mLearning system architectures: Some development aspects, (2008) Proceedings - The 8th IEEE International Conference on Advanced Learning Technologies, ICALT 2008, art. no. 4561750, pp. 504-505.


  • There are currently no refbacks.

Please send any question about this web site to
Copyright © 2005-2024 Praise Worthy Prize