An End-to-End Security Model for Adaptive Service-Oriented Applications

Abdellatif, Takoua; Bozga, Marius

doi:10.1007/978-3-319-91764-1_4

Cited by 3 publications

(2 citation statements)

References 22 publications

(23 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In other words, this step checks that initial provided labels are not putting more constraints than the security provided by the other services. Note that in the short version of the paper [10], the bindings security checking is performed outside the algorithm. We find it more practical to have each process security verification locally handled within the same program rather than separating intra‐ and inter‐service verification in two separate steps.…”

Section: Security Configuration Synthesismentioning

confidence: 99%

See 1 more Smart Citation

E2SM: a security tool for adaptive cloud‐based service‐oriented applications

Abdellatif

2019

IET softw.

Self Cite

View full text Add to dashboard Cite

The issue of security in the distributed system landscape of a service-oriented architecture (SOA) is a challenging one. No longer is it limited to a local application or an application domain, security must now work across a range of applications and business processes interacting with each other. This is even more true when SOA-based applications are provisioned in the cloud. Firstly, cloud applications components, and the data they might handle, that were once silos, are now being exposed as services by distinct and distrusted tenants. Secondly, such applications are often adaptive when they are provisioned in cloud environments. This study proposes an end-to-end security model (E2SM) that aims to protect data confidentiality in adaptive cloud-based SOA applications. E2SM allows the setting of data-centric security policies that go beyond services boundaries. First, security configuration is automatically calculated starting from a few intuitive business-oriented security settings. Then, the configuration is updated with minimal overhead if security policies are dynamically modified and/or SOA architecture is reconfigured. A security tool is implemented according to the proposed model. As for validation, the tool was used to secure a healthcare business process.

show abstract

Section: Security Configuration Synthesismentioning

confidence: 99%

“…E2SM allows the setting of data‐centric security policies that go beyond services boundaries. E2SM was introduced as part of a previous work [10]. In that work, a formal security model for end‐to‐end security configuration was presented.…”

Section: Introductionmentioning

confidence: 99%