web active

ACTIVE INTERNET TECHNOLOGIES
Active Internet allows intermediate routers to perform calculations and provide results
up to the application layer. Web applications can inject programs into the Internet [3]. The
most important applications of active Internet stems directly from the need to manage and
monitor the network. Additionally new protocols and innovative cost-effective technologies
are employed at intermediate nodes [4]. In this section we distinguish three approaches to
active networks:
•permanent processing - a program resides in a network core node and is executed
providing some services to the application layer;
•indirect computation invocation: the router or switch analyses the packets that
could contain call to some program that is part of the router functionality;
•direct processing: the packet contains a small program that has to be executed
directly by the router.

WEB ACTIVE TECHNOLOGIES
Active Web is evolving in the following directions: Web services, Semantic Web and
functional single-vocabulary XML. Several Web initiatives and industry projects convert
Web space into active computing paradigm. Web services provide the functions of the
active Web, Semantic Web defines the data types and semantic between them, the
functional XML supports faster delivery of the applications over the Web [2].
Web services
The Web service paradigm is based on two classical models of Internet applications:
the Web model (Web browsers make document requests to Web servers), and the remote
method invocation (a host invokes a method on another host). In the Web service model,
the Web document request plays the role of method invocation, arguments are encoded
into the Unified Resource Identifier (URI) of the service, and results are packed in an XML
document that the server sends back. In addition, the Web service architecture
incorporates functions that are important for distributed computing: transaction processing, request queuing, publish-subscribe event notification, standards for encoding the information, registries for service identification and description, etc.


Semantic Web
The composition of Web services requires the existing services to be encoded in a
semantic form, defined in Semantic Web initiatives [13] The Semantic Web service model
is based on the description, invocation and execution of individual services, each
consisting of several operations. The manipulation of Web services by software
applications is the objective of the Semantic Web, where the complex tasks are formulated
as concepts and relationships between them.
Semantic concepts and relationships are declared in an ontology. Ontology is a
document or a file that formally defines relations among terms [9]. The ontology consists of
hierarchical definitions of important concepts and description of the properties of each
concept. The ontologies are defined in DAML-OIL or OWL (Web Ontology Language),
which is an ontology language describing the primitives in XML and RDF/RDF Schema.
The services are represented as classes (concepts). Knowledge about a service is
comprised of two classes: service profile and service model. A service profile is a class
that describes what a service requires and what it provides. A service model is a class that
describes properties that concern the service implementation.

ACTIVE WEB SECURITY PLATFORM
We propose here the first architectural characteristics of a combined active platform
based both on security Web services and active Internet components. The architecture is
oriented to provide two important characteristics: monitoring of the trustworthiness of
the system nodes, and secure replication of the critical information.
In this paper we present a method for using semantic web to create monitoring web
services that select security information internally and estimate the level of the
trustworthiness (Figure 4). The first type of web service – local trust service - uses
ontologies to analyze parameters from the OS, firewalls, antivirus components, database
invasion and so on. The second type, monitoring web service, is incorporated in a trusted
centre. It corresponds with the system nodes and selects confirmation that they are not
object of security threats.