Deploying and managing Web services: issues, solutions, and directions

Web services are expected to be the key technology in enabling the next installment of the Web in the form of the Service Web. In this paradigm shift, Web services would be treated as first-class objects that can be manipulated much like data is now manipulated using a database management system. Hitherto, Web services have largely been driven by standards. However, there is a strong impetus for defining a solid and integrated foundation that would facilitate the kind of innovations witnessed in other fields, such as databases. This survey focuses on investigating the different research problems, solutions, and directions to deploying Web services that are managed by an integrated Web Service Management System (WSMS). The survey identifies the key features of a WSMS and conducts a comparative study on how current research approaches and projects fit in. This research is supported by the National Institutes of Health’s NLM grant 1-R03-LM008140-01.     

On the security of fair non-repudiation protocols

We analyzed two non-repudiation protocols and found some new attacks on the fairness and termination property of these protocols. Our attacks are enabled by several inherent design weaknesses, which also apply to other non-repudiation protocols. To prevent these attacks, we propose generic countermeasures that considerably strengthen the design and implementation of non-repudiation protocols. The application of these countermeasures is finally shown by our construction of a new fair non-repudiation protocol.     

Behavioral matchmaking for service retrieval: Application to conversation protocols

The capability to easily find useful services (software applications, software components, scientific computations) becomes increasingly critical in several fields. Current approaches for services retrieval are mostly limited to the matching of their inputs/outputs possibly enhanced with some ontological knowledge. Recent works have demonstrated that this approach is not sufficient to discover relevant components. In this paper we argue that, in many situations, the service discovery should be based on the specification of service behavior (in particular, the conversation protocol). The idea behind is to develop matching techniques that operate on behavior models and allow delivery of partial matches and evaluation of semantic distance between these matches and the user requirements. Consequently, even if a service satisfying exactly the user requirements does not exist, the most similar ones will be retrieved and proposed for reuse by extension or modification. To do so, we reduce the problem of behavioral matching to a graph matching problem and we adapt existing algorithms for this purpose. A prototype is presented (available as a web service) which takes as input two conversation protocols and evaluates the semantic distance between them.     

一种基于抽象模板的语义Web服务组合框架

提出一个基于抽象模板的语义Web服务组合框架,并详细分析了基于该框架的抽象模板检索、数据预处理以及模板修正的实现方法.为了提高模板检索的精确度,框架采用特征匹配和图匹配相结合的方法,实现了抽象模板和用户请求之间的相似度计算.同时利用数据预处理过程构建服务之间的依赖关系图,除去了冗余的服务,并事先验证了用户请求的可满足性.根据服务依赖关系图,框架使用启发式规划修改算法(HPAA)实现了模板的自动修正,并提供了对启发式策略的灵活配置,提高了服务组合的适应性和扩展性.最后对HPAA算法中所使用的启发式策略进行了实验,验证了算法在解决大规模问题上的适应性和可靠性.     

基于XML和Web服务的开放式企业管理信息系统构建方案

针对传统企业管理信息系统（Management Information System,MIS）集成过程中出现信息孤岛、不同系统之间数据难以共享等问题,探讨当前企业MIS的集成方式,基于XML和Web服务提出1套开放式的企业MIS构建方案,该方案采用XML文档作为数据存储及不同系统之间传输数据的主要载体,并将Web服务接口作为服务端接口以提高系统的开放性,在该方案中还给出身份验证、安全数据传输以及模块热插拔等关键技术的解决方法,实例表明该方案能基本解决多个系统之间的信息孤岛和数据表示问题,提高系统的可扩展性和可维护性。     

基于动态需求服务反馈的 Web 业务可信度协同计算

针对 Web 服务和 Web 业务的选择问题,提出一种基于动态需求服务反馈的 Web 业务可信度协同计算算法,动态分析了用户的 Web 服务选择和组合问题,采用了基于用户满意度信息的服务反馈模型来解决 Web 服务的选择问题,从而防止 Web 业务选择到服务质量较差的服务类型。在 Web 业务的选择上采用了基于可信度计算的方法,可信度大小由业务信誉度、反馈能力、服务信任度三方面决定,通过可信度大小的比较来选择最佳的 Web 业务。实验仿真结果表明,该算法在选择最佳的 Web 服务和 Web 业务上具有较高的精确度,尤其在选择最佳 Web 服务的精确率上相比对比算法高出11％以上。     

基于安全Web服务的网络管理技术的性能研究

众所周知,信息网络建设正朝着一体化和综合化的方向发展,采用Web服务技术能够帮助我们对网络进行综合管理,笔者在本文中简单介绍了网络管理技术的定义,并对比了基于安全Web服务管理的系统和SNMPV3的性能,并根据Web服务的应用特点提出了基于Web网络管理平台的技术解决方案.     

基于WSMO服务质量的语义Web服务发现框架

当前对Web服务进行语义描述最流行的两个框架是OWL-S和WSMO,但它们主要都是从服务功能的角度对服务进行描述,缺乏对服务质量的明确刻画,导致服务请求者难以得到最佳服务.针对此问题,对WSMO规范进行了扩展,定义了一个服务质量(QoS)的元模型--WSMO-QoS,给出了QoS的本体词汇.在此基础上提出了基于QoS的语义Web服务发现框架,并给出一个从基本描述、IOPE、QoS三个层次实现服务匹配的算法.最后,实验结果验证了该服务匹配算法的有效性.     

Modeling and managing the variability of Web service-based systems

Web service-based systems are built orchestrating loosely coupled, standardized, and internetworked programs. If on the one hand, Web services address the interoperability issues of modern information systems, on the other hand, they enable the development of software systems on the basis of reuse, greatly limiting the necessity for reimplementation. Techniques and methodologies to gain the maximum from this emerging computing paradigm are in great need. In particular, a way to explicitly model and manage variability would greatly facilitate the creation and customization of Web service-based systems. By variability we mean the ability of a software system to be extended, changed, customized or configured for use in a specific context.We present a framework and related tool suite for modeling and managing the variability of Web service-based systems for design and run-time, respectively. It is an extension of the COVAMOF framework for the variability management of software product families, which was developed at the University of Groningen. Among the novelties and advantages of the approach are the full modeling of variability via UML diagrams, the run-time support, and the low involvement of the user. All of which leads to a great deal of automation in the management of all kinds of variability.     

Quality of service for workflows and web service processes

Workflow management systems (WfMSs) have been used to support various types of business processes for more than a decade now. In workflows or Web processes for e-commerce and Web service applications, suppliers and customers define a binding agreement or contract between the two parties, specifying quality of service (QoS) items such as products or services to be delivered, deadlines, quality of products, and cost of services. The management of QoS metrics directly impacts the success of organizations participating in e-commerce. Therefore, when services or products are created or managed using workflows or Web processes, the underlying workflow engine must accept the specifications and be able to estimate, monitor, and control the QoS rendered to customers. In this paper, we present a predictive QoS model that makes it possible to compute the quality of service for workflows automatically based on atomic task QoS attributes. We also present the implementation of our QoS model for the METEOR workflow system. We describe the components that have been changed or added, and discuss how they interact to enable the management of QoS.     

移动Web位置服务的框架研究

结合实践研究,提出了一个移动Web位置服务的整体框架,并对已有相关技术成果进行分析对比。探讨了该领域未来的研究工作。     

基Web服务和SET协议的电子支付系统

电子支付系统是电子商务发展的关键之一,在阐述基于SET协议的电子支付模式技术难点的基础上,结合Web服务的技术优势,提出了一种全新的电子支付系统的模型。此系统采用SET协议作为电子支付的基本流程框架,保证系统具有高度的安全性;另外,系统中引入Web服务技术,简化了SET支付模式复杂的认证机制,解决了参与电子支付各方通信平台不统一的问题,使得此支付系统较传统的支付系统易于部署和实施。     

基于Web服务和SET协议的电子支付系统

电子支付系统是电子商务发展的关键之一，在阐述基于SET协议的电子支付模式技术难点的基础上，结合Web服务的技术优势，提出了一种全新的电子支付系统的模型。此系统采用SET协议作为电子支付的基本流程框架，保证系统具有高度的安全性；另外，系统中引入Web服务技术，简化了SET支付模式复杂的认证机制，解决了参与电子支付各方通信平台不统一的问题，使得此支付系统较传统的支付系统易于部署和实施。     

服务管理综述

1 引言随着网络技术和通信技术的迅速发展,Web服务逐渐成熟,在应用广度和应用深度方面都有突破,Web服务也从简单的信息发布、信息共享逐渐演变成智能的多功能服务。基于Web的服务管理是在Web服务功能逐渐智能化的基础上提出的。网络上的服务越来越多,处于无序状态,用户对Web服务的要求越来越多样化,有效组织好现有网络的资源,提供用户满意服务,就成为Internet发展必须解决的问题。 Web服务应由内容主导型(Content-Central)转向服务主导型(Service-Central)。由基础服务转向智能服务。近年来围     

Web服务中基于信任的跨域安全认证模型

在分析XCAML和WS—Security安全规范的基础上,设计出一种基于信任的跨域安全认证模型TB—WSCDSA。该模型解决了跨域服务双方身份认证的问题,并依据各自安全域的访问控制策略和信任计算所需的数据和算法,计算双方的信任度,根据信任度阈值比较结果对双方进行信任评估和授权,并将结果以信任证书的方式发送给服务双方以保证安全通信。     

The effects of alliance information on Web service composition

Web service composition (WSC) has emerged as a promising approach to integrating business applications within and across organizational boundaries. One of the major objectives of WSC research is to improve the performance of composite Web services. To this end, alliance information between different services partners has great potential, but has been overlooked by extant approaches to composing Web services. To address the above limitation, we propose an alliance-aware method for WSC in this paper, which incorporates the alliance information in constructing Web services. In addition, we adopt a multi-agent architecture to model and evaluate methods for WSC. Our experiment results reveal a significant impact of alliance information on the performance of WSC. We believe our findings on WSC are important to both WSC researchers and practitioners.     

基于XML构建安全的Web服务

介绍了Web服务的特点,讨论了与Web服务相关的XML安全技术。在此基础上,将目前成熟的安全体系结构PKI和web服务融合起来,提出了一个新的基于XML的Web服务分层安全模型,并对其安全性和特点进行了详细的分析论述。最后给出了该模型中的核心部分——安全服务子层的设计实现。