Integration of Heterogeneous Policies for Trust Management

摘要

In this paper, we demonstrate an ontology-based approach that allows integration of heterogeneous security policies for subterfuge safe trust management. This approach, SSALO, represents the Subterfuge Safe Authorization Language (SSAL) using a description logic subset of the Web Ontology Language, and Semantic Web Rule Language. This implementation provides a policy engine that enforces subterfuge safe authorization of requests for accessing the protected resources of distributed principals. SSALO provides a common domain model for integration of heterogeneous security policies. This approach is useful for secure cooperation and interoperability among principals in open environments where each principal may have a different security policy and different implementation. We discuss the characteristics of SSALO in capturing SSAL and providing a framework for secure and dynamic integration of heterogeneous security policies specified by distributed principals in different domains. We employ various tools such as Protégé and Pellet to implement our model.