學術產出-學位論文

題名 以規則分類機制來建立一個具可信度的網路服務架構
作者 陳世庭
Se-Ting Chen
貢獻者 胡毓忠
Yuh-Jong Hu
陳世庭
Se-Ting Chen
關鍵詞 Semantic Web
Agent
Trust
Web Service
Rule
日期 2003
上傳時間 17-九月-2009 13:52:46 (UTC+8)
摘要 可信度是網路服務首要解決的問題,我們從數位憑證,認證、授權、委任授權等安全層面去研究代理者可信度,並提出一套完整可信度規則分類機制當作信任度判斷的依據。在此篇論文中,我們論證如何將規則概念應用在代理者的溝通協定、服務流程控制上。我們並同時整合語意網規則和本體論的技術,以達到可信的網路服務環境。
Trust is one of the most important issues for Web Services. We studied the agent trust problem based on security technologies, such as digital certificates, authentication, authorization, and delegation, etc. Furthermore, we propose a complete trust rule taxonomy mechanism to assistant us on the evaluation of agent trustworthiness. In this thesis, we justify the feasibility of using rule concepts on the agent communication protocol and service process control. We also demonstrated how to integrate the semantic web rules and ontologies to have a trusted web services environment.
參考文獻 參考文獻
[1] Andreas Eberhart, OntoAgent: A Platform for Declarative Specification of Agents, Proc. International Workshop on Rule Markup Languages for Business Rules on the Semantic Web, Sardinia (Italy), June (2002).
[2] Benjamin Grosof and Terrence Poon, Representing Agent Contracts with Exceptions using XML Rules, Ontologies, and Process Descriptions, Proc. International Workshop on Rule Markup Languages for Business Rules on the Semantic Web, Sardinia (Italy), June (2002).
[3] Benjamin N. Grosof and Ian Horrocks, Description Logic Programs: Combining Logic Programs with Description Logic, Working Paper, version of Nov. 21, (2002), http://ebusiness.mit.edu/bgrosof/paps/dlp-wp-v19.pdf.
[4] Benjamin N.Grosof, Yannis Labrou and Hoi Y.Chan, A Declarative Approach to Business Rules in Contracts:Courteous Logic Programs in XML, Proc. ACM E-Commerce 99, Denver, (1999), 68-77.
[5] DAML Services Coalition, DAML-S:Semantic Markup for Web Services, Proc. International Semantic Web Working Symposium (SWWS), Standford, CA., (2001), 411-430.
[6] DARPA Agent Markup Language Program http://www.daml.org/.
[7] FIPA (Foundation for Intelligent Physical Agents) Agent Communication Language standards effort, http://www.fipa.org.
[8] Gerd Wagner, How to Design a General Rule Markup Language?, Invited Talk, Workshop XML Technologien für das Semantic Web (XSW 2002), Berlin, June (2002).
[9] Harold Boley, Said Tabet, and Gerd Wagner, Design Rationale of RuleML: A Markup Language for Semantic Web Rules, Proc. SWWS`01, Stanford, July/August (2001).
[10] Yuh-Jong Hu, Some Thoughts on Agent Trust and Delegation. The Fifth International Conference on Autonomous Agents, Montreal, Quebec, Canada, May 28-June 1, (2001), 489-496.
[11] Yuh-Jong Hu, Trusted Agent-Mediated E-Commerce Transaction Services via Digital Certificates Management. Electronic Commerce Research (ECR),Vol. 3, Issues 3-4, April (2003).
[12] James Hendler, Agents and the Semantic Web, IEEE Intelligent Systems, vol. 16, no. 2, Mar./Apr. (2001), 30–37.
[13] Lalana Kagal, Tim Finin, Anupam Joshi, Developing Secure Agent Systems Using Delegation Based Trust Management, Security of Mobile Multi-Agent Systems Workshop, Autonomous Agents and Multiagent Systems (AAMAS 2002), Bologna, Italy, July 16 (2002).
[14] Mandarax, http://www.mandarax.org/
[15] Mizuho Iwaihara, Masayuki Kozawa, Jun Narazaki and Yahiko Kambayashi ,A System for Querying and Viewing Business Constraints, Proc. International Workshop on Rule Markup Languages for Business Rules on the Semantic Web, Sardinia (Italy), June (2002).
[16] Ninghui Li, Benjamin Grosof and Joan Feigenbaum, A Practically Implementable and Tractable Delegation Logic, Proc. of IEEE Symp. on Security and Privacy, Oakland, CA, USA, May (2000).
[17] RuleML, http://www.dfki.uni-kl.de/ruleml/.
[18] Security in a Web Services World: A Proposed Architecture and Roadmap. A joint security white paper from IBM Corp. and Microsoft Corp., Version 1.0, April 7, (2002). http://www.-106.ibm.com/developworks/library/ws-secmap.
[19] Sheila A. McIlraith, Tran Cao Son, and Honglei Zeng, Semantic Web Services, IEEE Intelligent Systems, vol. 16, no. 2, Mar./Apr. (2001), 46–53.
[20] Theo Dimitrakos, Brian Matthews and JuanBicarregui, Towards security and trust management policies on the Web, ERCIM workshop, Zurich, Switzerland, October 3, (2001).
[21] Tuomo Lampinen, Using SPKI Certificates for Authorization in CORBA based Distributed Object-Oriented Systems, Proceedings of the NordSec`99, the Fourth Nordic Workshop on Secure IT Systems, Stockholm, Sweden, November 1st-2nd, (1999).
[22] XML Encryption, http://www.w3.org/Encryption/2001/
[23] XML Signature, http://www.w3.org/TR/xmldsig-core/
[24] Bradshaw, M. Jeffrey, et al., KaoS:Toward An Industrial-Strength Open Agent Architecture. Software Agents, Edited by Jeffrey M. Bradshaw, (1997), 375-418.
[25] Stuart Russell and Peter Norvig, Artificial Intelligence:A Modern Approach, Prentice Hall, New Jersey, US, (1995).
描述 碩士
國立政治大學
資訊科學學系
90753011
92
資料來源 http://thesis.lib.nccu.edu.tw/record/#G0090753011
資料類型 thesis
dc.contributor.advisor 胡毓忠zh_TW
dc.contributor.advisor Yuh-Jong Huen_US
dc.contributor.author (作者) 陳世庭zh_TW
dc.contributor.author (作者) Se-Ting Chenen_US
dc.creator (作者) 陳世庭zh_TW
dc.creator (作者) Se-Ting Chenen_US
dc.date (日期) 2003en_US
dc.date.accessioned 17-九月-2009 13:52:46 (UTC+8)-
dc.date.available 17-九月-2009 13:52:46 (UTC+8)-
dc.date.issued (上傳時間) 17-九月-2009 13:52:46 (UTC+8)-
dc.identifier (其他 識別碼) G0090753011en_US
dc.identifier.uri (URI) https://nccur.lib.nccu.edu.tw/handle/140.119/32623-
dc.description (描述) 碩士zh_TW
dc.description (描述) 國立政治大學zh_TW
dc.description (描述) 資訊科學學系zh_TW
dc.description (描述) 90753011zh_TW
dc.description (描述) 92zh_TW
dc.description.abstract (摘要) 可信度是網路服務首要解決的問題,我們從數位憑證,認證、授權、委任授權等安全層面去研究代理者可信度,並提出一套完整可信度規則分類機制當作信任度判斷的依據。在此篇論文中,我們論證如何將規則概念應用在代理者的溝通協定、服務流程控制上。我們並同時整合語意網規則和本體論的技術,以達到可信的網路服務環境。zh_TW
dc.description.abstract (摘要) Trust is one of the most important issues for Web Services. We studied the agent trust problem based on security technologies, such as digital certificates, authentication, authorization, and delegation, etc. Furthermore, we propose a complete trust rule taxonomy mechanism to assistant us on the evaluation of agent trustworthiness. In this thesis, we justify the feasibility of using rule concepts on the agent communication protocol and service process control. We also demonstrated how to integrate the semantic web rules and ontologies to have a trusted web services environment.en_US
dc.description.tableofcontents 目錄

第一章 導論 1
1.1 研究背景 1
1.2 研究目的 2
1.3 已完成項目 3
1.4 各章節概述 3
第二章 相關研究 4
2.1 網路服務的安全考量 4
2.1.1 認證 5
2.1.2 授權 5
2.1.3 交易和溝通的完整性 6
2.2 語意網規則的起源和應用 7
2.2.1 語意網 7
2.2.2 語意網與網路服務 8
2.2.3 語意網中規則的角色 9
2.2.4 規則與軟體代理者的結合 10
2.2.5 語意網規則與網路服務安全上的結合 11
第三章 安全機制 12
3.1 數位憑證 12
3.2 規則分類 13
3.2.1 基本規則分類 13
3.2.2 規則標記語言(RULE MARKUP LANGUAGE, RULEML) 15
3.2.3信任度規則的使用時機 16
3.2.4策略分類 17
3.2.5 信任度規則分類 18
3.2.6 基本規則分類、安全規則分類與策略分類三者的關係 21
3.2.7 規則的存放、蒐集與交換 23
3.3 安全溝通機制 25
3.3.1 安全溝通協定 25
3.3.2實做安全通訊協定 29
3.4決策推論 31
第四章 系統架構與實做 33
4.1 系統架構 33
4.2 推論引擎 34
4.2.1 JESS 34
4.2.2 MANDARAX 35
4.3溝通模組 35
4.3.1 訊息處理器(MESSAGE PROCESSOR) 35
4.3.2 動作控制元件(ACTION CONTROLLER) 36
4.4決策推論模組 37
4.4.1 策略處理器(POLICY PROCESSOR) 37
4.4.2 密碼學處理器(CRYPTO PROCESSOR) 38
4.4.3 資料轉換器(DATA TRANSFORMER) 38
4.4.4 規則和本體論知識的資料整合 39
4.4.5 限制條件檢查器(CONSTRAINT CHECKER) 42
4.5 資料處理流程 42
第五章 系統分析 45
5.1 場景介紹 45
5.2 實驗系統可行性與正確性 48
5.2.1 實驗1:服務要求端 48
5.2.1.1 溝通流程規則設計 48
5.2.1.2 流程的正確性分析 49
5.2.1.3 信任度規則設計 51
5.2.1.4 推論的正確性分析 53
5.2.2 實驗2:服務提供者 55
5.2.2.1 溝通流程的正確性 55
5.2.2.2 信任度規則的設計 56
5.2.2.3 推論的正確性分析 57
5.3 效能分析 59
第六章 結論與未來展望 63
6.1 結論 63
6.2 未來展望 64
參考文獻 66
附錄一 策略內容 69
附錄二 通訊規則 72
附錄三 基本規則分類在RULEML中的結構 76


圖目錄

圖2- 1 DAML-S的程序關係圖。 6
圖2- 2 語意網技術、概念堆疊圖。 8
圖3- 1 基本規則分類關係圖。 15
圖3- 2 網路服務架構圖。 16
圖3- 3 策略的使用時機 18
圖3- 4 RDF中的TRIPLE概念圖。 19
圖3- 5 DAML+OIL所不能表達的關係。 19
圖3- 6 認證協定流程圖。 26
圖3- 7 委任授權協定流程圖。 27
圖3- 8 授權協定流程圖。 28
圖3- 9 (A)通訊模組堆疊圖 (B)通訊模組的虛擬碼。 30
圖3- 10 (1)轉換函數示意圖 (2)輸出函數示意圖。 31
圖4- 1 系統架構圖。 32
圖4- 2 動作控制元件處理流程圖。 36
圖4- 3 資料轉換流程圖。 38
圖4- 4 推論系統架構圖。 39
圖4- 5 資料流程圖 42
圖5- 1 仲介服務類型示意圖。 45
圖5- 2 場景流程圖。 45
圖5- 3 服務要求端的FSM示意圖。 48
圖5- 4 服務要求者的溝通狀態一。 49
圖5- 5 服務要求者的溝通狀態二。 49
圖5- 6 AUTHENTICATION POLICY的知識庫內容呈現。 52
圖5- 7 AUTHENTICATION POLICY的完整性規則檢查。 53
圖5- 8 DELEGATION POLICY的知識庫內容呈現。 53
圖5- 9 DELEGATION POLICY的完整性規則檢查。 53
圖5- 10 服務提供者的FSM示意圖。 54
圖5- 11 服務提供者的溝通狀態。 55
圖5- 12 AUTHENTICATION POLICY的知識庫內容呈現。 57
圖5- 13AUTHENTICATION POLICY完整性規則檢查。 57
圖5- 14 AUTHORIZATION POLICY知識庫內容呈現。 57
圖5- 15 AUTHORIZATION POLICY完整性規則檢查。 58
圖5- 16 策略的訊息回覆時間群組比較圖。 59





表目錄

表3- 1規則分類關係表 22
表5-1訊息回覆時間分析表 59
zh_TW
dc.format.extent 77762 bytes-
dc.format.extent 84016 bytes-
dc.format.extent 169493 bytes-
dc.format.extent 121100 bytes-
dc.format.extent 182723 bytes-
dc.format.extent 522627 bytes-
dc.format.extent 493931 bytes-
dc.format.extent 533059 bytes-
dc.format.extent 128903 bytes-
dc.format.extent 71448 bytes-
dc.format.extent 398377 bytes-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.format.mimetype application/pdf-
dc.language.iso en_US-
dc.source.uri (資料來源) http://thesis.lib.nccu.edu.tw/record/#G0090753011en_US
dc.subject (關鍵詞) Semantic Weben_US
dc.subject (關鍵詞) Agenten_US
dc.subject (關鍵詞) Trusten_US
dc.subject (關鍵詞) Web Serviceen_US
dc.subject (關鍵詞) Ruleen_US
dc.title (題名) 以規則分類機制來建立一個具可信度的網路服務架構zh_TW
dc.type (資料類型) thesisen
dc.relation.reference (參考文獻) 參考文獻zh_TW
dc.relation.reference (參考文獻) [1] Andreas Eberhart, OntoAgent: A Platform for Declarative Specification of Agents, Proc. International Workshop on Rule Markup Languages for Business Rules on the Semantic Web, Sardinia (Italy), June (2002).zh_TW
dc.relation.reference (參考文獻) [2] Benjamin Grosof and Terrence Poon, Representing Agent Contracts with Exceptions using XML Rules, Ontologies, and Process Descriptions, Proc. International Workshop on Rule Markup Languages for Business Rules on the Semantic Web, Sardinia (Italy), June (2002).zh_TW
dc.relation.reference (參考文獻) [3] Benjamin N. Grosof and Ian Horrocks, Description Logic Programs: Combining Logic Programs with Description Logic, Working Paper, version of Nov. 21, (2002), http://ebusiness.mit.edu/bgrosof/paps/dlp-wp-v19.pdf.zh_TW
dc.relation.reference (參考文獻) [4] Benjamin N.Grosof, Yannis Labrou and Hoi Y.Chan, A Declarative Approach to Business Rules in Contracts:Courteous Logic Programs in XML, Proc. ACM E-Commerce 99, Denver, (1999), 68-77.zh_TW
dc.relation.reference (參考文獻) [5] DAML Services Coalition, DAML-S:Semantic Markup for Web Services, Proc. International Semantic Web Working Symposium (SWWS), Standford, CA., (2001), 411-430.zh_TW
dc.relation.reference (參考文獻) [6] DARPA Agent Markup Language Program http://www.daml.org/.zh_TW
dc.relation.reference (參考文獻) [7] FIPA (Foundation for Intelligent Physical Agents) Agent Communication Language standards effort, http://www.fipa.org.zh_TW
dc.relation.reference (參考文獻) [8] Gerd Wagner, How to Design a General Rule Markup Language?, Invited Talk, Workshop XML Technologien für das Semantic Web (XSW 2002), Berlin, June (2002).zh_TW
dc.relation.reference (參考文獻) [9] Harold Boley, Said Tabet, and Gerd Wagner, Design Rationale of RuleML: A Markup Language for Semantic Web Rules, Proc. SWWS`01, Stanford, July/August (2001).zh_TW
dc.relation.reference (參考文獻) [10] Yuh-Jong Hu, Some Thoughts on Agent Trust and Delegation. The Fifth International Conference on Autonomous Agents, Montreal, Quebec, Canada, May 28-June 1, (2001), 489-496.zh_TW
dc.relation.reference (參考文獻) [11] Yuh-Jong Hu, Trusted Agent-Mediated E-Commerce Transaction Services via Digital Certificates Management. Electronic Commerce Research (ECR),Vol. 3, Issues 3-4, April (2003).zh_TW
dc.relation.reference (參考文獻) [12] James Hendler, Agents and the Semantic Web, IEEE Intelligent Systems, vol. 16, no. 2, Mar./Apr. (2001), 30–37.zh_TW
dc.relation.reference (參考文獻) [13] Lalana Kagal, Tim Finin, Anupam Joshi, Developing Secure Agent Systems Using Delegation Based Trust Management, Security of Mobile Multi-Agent Systems Workshop, Autonomous Agents and Multiagent Systems (AAMAS 2002), Bologna, Italy, July 16 (2002).zh_TW
dc.relation.reference (參考文獻) [14] Mandarax, http://www.mandarax.org/zh_TW
dc.relation.reference (參考文獻) [15] Mizuho Iwaihara, Masayuki Kozawa, Jun Narazaki and Yahiko Kambayashi ,A System for Querying and Viewing Business Constraints, Proc. International Workshop on Rule Markup Languages for Business Rules on the Semantic Web, Sardinia (Italy), June (2002).zh_TW
dc.relation.reference (參考文獻) [16] Ninghui Li, Benjamin Grosof and Joan Feigenbaum, A Practically Implementable and Tractable Delegation Logic, Proc. of IEEE Symp. on Security and Privacy, Oakland, CA, USA, May (2000).zh_TW
dc.relation.reference (參考文獻) [17] RuleML, http://www.dfki.uni-kl.de/ruleml/.zh_TW
dc.relation.reference (參考文獻) [18] Security in a Web Services World: A Proposed Architecture and Roadmap. A joint security white paper from IBM Corp. and Microsoft Corp., Version 1.0, April 7, (2002). http://www.-106.ibm.com/developworks/library/ws-secmap.zh_TW
dc.relation.reference (參考文獻) [19] Sheila A. McIlraith, Tran Cao Son, and Honglei Zeng, Semantic Web Services, IEEE Intelligent Systems, vol. 16, no. 2, Mar./Apr. (2001), 46–53.zh_TW
dc.relation.reference (參考文獻) [20] Theo Dimitrakos, Brian Matthews and JuanBicarregui, Towards security and trust management policies on the Web, ERCIM workshop, Zurich, Switzerland, October 3, (2001).zh_TW
dc.relation.reference (參考文獻) [21] Tuomo Lampinen, Using SPKI Certificates for Authorization in CORBA based Distributed Object-Oriented Systems, Proceedings of the NordSec`99, the Fourth Nordic Workshop on Secure IT Systems, Stockholm, Sweden, November 1st-2nd, (1999).zh_TW
dc.relation.reference (參考文獻) [22] XML Encryption, http://www.w3.org/Encryption/2001/zh_TW
dc.relation.reference (參考文獻) [23] XML Signature, http://www.w3.org/TR/xmldsig-core/zh_TW
dc.relation.reference (參考文獻) [24] Bradshaw, M. Jeffrey, et al., KaoS:Toward An Industrial-Strength Open Agent Architecture. Software Agents, Edited by Jeffrey M. Bradshaw, (1997), 375-418.zh_TW
dc.relation.reference (參考文獻) [25] Stuart Russell and Peter Norvig, Artificial Intelligence:A Modern Approach, Prentice Hall, New Jersey, US, (1995).zh_TW