Automated Runtime Verification for Web Services

Cao, Tien-Dung; Phan-Quang, Trung-Tien; Felix, Patrick; Castanet, Richard

doi:10.1109/icws.2010.19

Cited by 21 publications

(17 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There is considerable work on runtime monitoring of web services, e.g., [18,7] verifying the correctness of reactive (communication) properties, similar to those expressed through sHML; to the best of our knowledge, none of this work tackles correct monitor synthesis from a specified logic. In [14], Colombo et al develop an Erlang RV tool using the EVM tracing mechanism but do not consider the issue of correct monitor generation.…”

Section: Resultsmentioning

confidence: 99%

“…The first sub-property is Violation Detectability, Lemma 3, guaranteeing that every violating trace s of formula ϕ is detectable by the respective synthesised monitor, 7 (the only-if case) and that there are no false detections (the if case). This property is easier to verify than Theorem 3 since it requires us to consider the execution of the monitor in isolation and, more importantly, requires us to verify the existence of an execution path that detects the violation; concurrent monitors typically have multiple execution paths and Theorem 3 requires us to prove this property for all of the possible monitor execution paths.…”

Section: Proving Correctnessmentioning

confidence: 99%

See 1 more Smart Citation

Synthesising correct concurrent runtime monitors

Francalanza

Seychell

2014

Form Methods Syst Des

View full text Add to dashboard Cite

This paper studies the correctness of automated synthesis for concurrent monitors. We adapt a subset of the Hennessy-Milner logic with recursion (a reformulation of the modal µ-calculus) to specify safety properties for Erlang programs. We also define an automated translation from formulas in this sub-logic to concurrent Erlang monitors that detect formula violations at runtime. Subsequently, we formalise a novel definition for monitor correctness that incorporates monitor behaviour when instrumented with the program being monitored. Finally, we devise a sound technique that allows us to prove monitor correctness in stages; this technique is used to prove the correctness of our automated monitor synthesis.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Proving Correctnessmentioning

confidence: 99%

Synthesising correct concurrent runtime monitors

Francalanza

Seychell

2014

Form Methods Syst Des

View full text Add to dashboard Cite

show abstract

“…In [14], Cao et al presented a methodology for passive testing of behavioral conformance for web services. However, unlike our proposal, the paper only focuses on security issues.…”

Section: Related Workmentioning

confidence: 99%

On the Verification of Behavioral and Probabilistic Web Services Using Transformation

Oghabi

Benharref

2011

2011 IEEE International Conference on Web Services

View full text Add to dashboard Cite

In this paper, we propose a preliminary approach for automating web service verification. We use Semantic Markup for Web Services (OWL-S) to describe web service behavior. We parse the OWL-S file and transform it automatically to a corresponding Markov chain diagram or Markov decision process, which are then transformed to a PRISM model to be used as input by PRISM, a probabilistic model checker, to verify automatically the web service behavior. We provide an implementation of the transformation algorithm through a developed software tool automating all the transformation and verification activities.

show abstract

“…Besides service testing, service providers and consumers may also apply some runtime verification techniques to monitor and verify the properties of Web services, such as transactional requirements [34], data consistency [76], [75], conformance of interface contracts [29], [36], timing constraints [19], to just name a few. When some properties are violated at runtime, some mechanisms (e.g., compensation [79]) are usually needed to recover services from failures.…”

Section: Related Workmentioning

confidence: 99%

Whitening SOA Testing via Event Exposure

Jacobsen

2013

IIEEE Trans. Software Eng.

View full text Add to dashboard Cite

Whitening the testing of service-oriented applications can provide service consumers confidence on how well an application has been tested. However, to protect business interests of service providers and to prevent information leakage, the implementation details of services are usually invisible to service consumers. This makes it challenging to determine the test coverage of a service composition as a whole and design test cases effectively. To address this problem, we propose an approach to whiten the testing of service compositions based on events exposed by services. By deriving event interfaces to explore only necessary test coverage information from service implementations, our approach allows service consumers to determine test coverage based on selected events exposed by services at runtime without releasing the service implementation details. We also develop an approach to design test cases effectively based on event interfaces concerning both effectiveness and information leakage. The experimental results show that our approach outperforms existing testing approaches for service compositions with up to 49 percent more test coverage and an up to 24 percent higher fault-detection rate. Moreover, our solution can trade off effectiveness, efficiency, and information leakage for test case generation.

show abstract

Automated Runtime Verification for Web Services

Cited by 21 publications

References 11 publications

Synthesising correct concurrent runtime monitors

Synthesising correct concurrent runtime monitors

On the Verification of Behavioral and Probabilistic Web Services Using Transformation

Whitening SOA Testing via Event Exposure

Contact Info

Product

Resources

About