General Framewhork for Secure Service Orchestration
نویسندگان
چکیده
Web services composition allows a software designer for combining atomic services, for instance taken from a marketplace, in a complex business process fulfilling a desired functional goal. Moreover, among a large number of possible compositions, the designer may want to consider only those which satisfy specific non-functional requirements. In our work we consider verification of security properties and evaluation quantitative security metrics in a single framework. The main focus of this article is the verification of a composition with several security metrics at once. We provide a general solution for the problem and show how such verification can be made more efficient in specific cases (e.g., when a metric is an abstraction of another one). We employ a mathematical structure called c-semirings granting the generality of our approach.
منابع مشابه
Discovering Secure Service Compositions
Security is an important concern for service based systems, i.e., systems that are composed of autonomous and distributed software services. This is because the overall security of such systems depends on the security of the individual services they deploy and, hence, it is difficult to assess especially in cases where the latter services must be discovered and composed dynamically. This paper ...
متن کاملMetric-Aware Secure Service Orchestration
Secure orchestration is an important concern in the internet of service. Next to providing the required functionality the composite services must also provide a reasonable level of security in order to protect sensitive data. Thus, the orchestrator has a need to check whether the complex service is able to satisfy certain properties. Some properties are expressed with metrics for precise defini...
متن کاملService Interaction through Gateways for Inter-Cloud Collaboration within the Arrowhead Framework
Service oriented architectures (SOA) provide functional and configuration flexibility in closed communication environments, where security and service-related orchestration issues are controlled within the local network. For automation systems, these SOA-based networks can have core services, such as Service Registry, Orchestration, Authorization, and so on. A set of such core services are defi...
متن کاملSecure Service Orchestration
We present a framework for designing and composing services in a secure manner. Services can enforce security policies locally, and can invoke other services in a “call-by-contract” fashion. This mechanism offers a significant set of opportunities, each driving secure ways to compose services. We discuss how to correctly plan service orchestrations in some relevant classes of services and secur...
متن کاملComparing Coordination Arrangements Enabled by Web Services and Web Service Orchestration Technology
Web services create interoperability among information systems and web service orchestration enables the coordination of activities. Both enable public agencies to cooperate more and more in chains to deliver services to their constituents. There are various ways to organize the coordination of cross-agency processes. In general it can be done in either a centralized or a decentralized way. Yet...
متن کامل