The Research And Implementation Of Web Service Composition Security Dynamic Detecting Technologies

With the rapid development of service oriented computing technologies, Web services havebecome one of the most important resources on the Internet. Owing to the complex and diversecharacteristicsin services composition process, chances of unexpected interactions graduallyincrease. These issues will affect normal behaviors of services. Web services compositionmodesare diverse and Web servicescharacters are distributed and secret, then servicescomposition security detections are faced with new challenges. To solve this problem, throughanalyzing the newest research, security dynamic detecting framework and model, servicescomposition modeling technology and security detecting algorithm are studied in this paper.Thus security dynamic detecting prototype system is realized. The contributions are asfollowing:1. A security dynamic detecting framework and model has been proposed. In order toimplement the consistency detection between captured interactions and services composition, thetraditional detection model is improved. SOAP message interception, detecting management,service composition model and security detection are included. Through capturing interactivemessages and establishing security mode, an algorithm is used to detect the captured interactions.2. A Web services composition modeling technologyhas been proposed. In order to describethe interactive relationship between services composition, OWL-S and Petri net definition areanalyzed. Through the mapping rules and transformation mode of service flow and Petri netmodel, any complicated compostion can be transformed into Petri net model.3. A services composition security detecting algorithm has been proposed to enhance thereliability of detecting process, through analyzing the corresponding relationship betweensecurity model and composition, the model accuratedly describes the security rules. Then thealgorithm is used to check whether the security rules are satisfied to ensure the servicescomposition running safely.4. A Web services composition security dynamic detecting prototype system has beendesigned and realized. Through function, security and performance tests, the system fulfills therun-time security detection requirements.