Skip to Main Content
Service composition is an important means for integrating the individual Web services to create new value added systems that can satisfy complex requirements. However, it is a challenge to analyze security requirements for those applications due to the uncertainty factors in distributive environment. This paper proposes an approach to modeling and analyzing security requirements of service composition. Petri nets are used to model the different components of service composition, the dynamic matching strategy of service composition is proposed. Aspect-orientation is used to weave the security requirements into service composition, which includes evaluation concern, authorization, security level outputting and access outputting. The operation semantics and related theories of Petri nets help prove its effectiveness and correctness. An example explains the modeling and analyzing process of service composition, and a series of experiments are done to explain that the use of aspects for analyzing security requirements of service composition is more efficient than conventional techniques.