For access control policy composition problem of composite services in Web services multi-domain environment, the attribute based Web services access control policy description framework was proposed and the services access control policies were formally expressed with atomic attribute value constraint. After analyzing the control structures in services composition description document, combining the access control policy composition operators with access control policy rule composition operation, the composite Web services access control policies composition method was designed to compose the composite service access control policies. Finally, the Web services access control policy composition process was given and the practicability of composition method was verified through a case.%针对Web服务多域环境下组合服务的访问控制策略合成问题,首先提出基于属性的Web服务访问控制策略描述框架,并结合原子属性值限制的属性描述方法,对服务访问控制策略进行了形式化表达.然后,通过分析服务组合描述文档中的控制结构,并研究访问控制策略合成算子和访问控制策略规则的合成运算,提出组合Web服务访问控制策略合成方法,实现了组合服务访问控制策略的合成.最后,结合实例给出组合Web服务的访问控制策略合成流程,验证了合成方法的实用性.
展开▼