A collaborative framework for enforcing server commitments, and for regulating server interactive behavior in SOA-based systems

Abstract: We are presenting a collaborative framework to enforce server commitments, and to regulate server interactive behavior in SOA systems. Trusted components collaborate to establish a network of enforcement components, one per server, to maintain proofs of what servers have committed with their clients and peer servers. The trusted components and the enforcement components also collaborate to make servers accountable for their commitments, and to enforce policies on the interactions between the servers and their … Show more

“…Another solution [10] suggests a custom security service bus for enforcement of complex policies. Other conceptual approaches based on law-governed interactions [11] aim to model enforcement of laws onto communication between servers and clients, but they consider generic distributed dedicated entities to perform the law realization. Our assumption differs in that it uses the ESB as a centralized mechanism that either performs on-the-fly enforcement or delegates it to a trusted entity.…”

xESB: An Enterprise Service Bus for Access and Usage Control Policy Enforcement

“…Another solution [10] suggests a custom security service bus for enforcement of complex policies. Other conceptual approaches based on law-governed interactions [11] aim to model enforcement of laws onto communication between servers and clients, but they consider generic distributed dedicated entities to perform the law realization. Our assumption differs in that it uses the ESB as a centralized mechanism that either performs on-the-fly enforcement or delegates it to a trusted entity.…”

xESB: An Enterprise Service Bus for Access and Usage Control Policy Enforcement

Enforcing UCON Policies on the Enterprise Service Bus

Regulating Orchestration in SOA-Based Systems