Distributed object middleware to support dependable information sharing between organisations

Cook, Nicholas; Shrivastava, Santosh K.; Wheater, SM

doi:10.1109/dsn.2002.1028906

Cited by 19 publications

(15 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…K(B,A) is then used to generate the MAC of message (6). (1) to C. C then sends message (2) to SA in order to check the identity of B. SA will send back a confirmation in message (3), confirming that B is a session partner of S. After receiving the confirmation, B will handle the request from C and send the result back. All the messages transferred during this process are encrypted by the secret key generated with the Diffie-Hellman algorithm.…”

Section: Formal Definitionsmentioning

confidence: 99%

“…ith the emergence of service-oriented technologies, dynamism and flexibility are becoming the core characteristics of modern inter-organizational business processes, such as business application integration, distributed auction services, and order processing [1,2]. Within a serviceoriented architecture (SOA), an organization may encapsulate and publish its applications as services, and select and interact at runtime with the services provided by other organizations.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Dynamic Authentication for Cross-Realm SOA-Based Business Processes

Zhang

Liu

et al. 2012

IEEE Trans. Serv. Comput.

View full text Add to dashboard Cite

Abstract-Modern distributed applications are embedding an increasing degree of dynamism, from dynamic supply-chain management, enterprise federations, and virtual collaborations to dynamic resource acquisitions and service interactions across organizations. Such dynamism leads to new challenges in security and dependability. Collaborating services in a system with a Service-Oriented Architecture (SOA) may belong to different security realms but often need to be engaged dynamically at runtime. If their security realms do not have a direct cross-realm authentication relationship, it is technically difficult to enable any secure collaboration between the services. A potential solution to this would be to locate intermediate realms at runtime, which serve as an authentication-path between the two separate realms. However, the process of generating an authentication path for two distributed services can be highly complicated. It could involve a large number of extra operations for credential conversion and require a long chain of invocations to intermediate services. In this paper, we address this problem by designing and implementing a new cross-realm authentication protocol for dynamic service interactions, based on the notion of serviceoriented multi-party business sessions. Our protocol requires neither credential conversion nor establishment of any authentication path between the participating services in a business session. The correctness of the protocol is formally analyzed and proven, and an empirical study is performed using two production quality Grid systems, Globus 4 and CROWN. The experimental results indicate that the proposed protocol and its implementation have a sound level of scalability and impose only a limited degree of performance overhead, which is for example comparable with those security-related overheads in Globus 4.

show abstract

Section: Formal Definitionsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Dynamic Authentication for Cross-Realm SOA-Based Business Processes

Zhang

Liu

et al. 2012

IEEE Trans. Serv. Comput.

View full text Add to dashboard Cite

show abstract

“…These requirements imply the collection, and verification, of non-repudiable evidence of the actions of parties who share and update information. We have implemented distributed object middleware called B2BObjects [1] that both presents the abstraction of shared state and meets these requirements by regulating, and recording, access and update to shared state. It is assumed that each enterprise has a local set of policies for information sharing that is consistent with an overall information sharing agreement (business contract) between the enterprises.…”

Section: Introductionmentioning

confidence: 99%

Middleware Support for Non-repudiable Transactional Information Sharing between Enterprises

Cook

Shrivastava

Wheater³

2003

Distributed Applications and Interoperable Systems

View full text Add to dashboard Cite

Abstract. Enterprises increasingly use the Internet to offer their own services and to utilise the services of others. An extension of this trend is Internet-based collaboration to form virtual enterprises for the delivery of goods or services. Effective formation of a virtual enterprise will require information sharing across organisational boundaries. Despite the requirement to share information, the autonomy and privacy requirements of enterprises must not be compromised. This demands strict policing of inter-enterprise interactions, including non-repudiable access to shared information. For a member of a virtual enterprise, a typical requirement is the ability to inspect/modify shared information together with private information within a single ACID transaction. At the same time, inspection/modification of the shared information should both generate non-repudiation evidence and be consistent with inter-enterprise agreements. The paper describes how information sharing middleware can be enhanced with distributed transaction support to perform regulated transactional information sharing. Design and implementation of a prototype Java middleware is presented.

show abstract

“…If the e-contract is in a given condition q (for example, WatingForOffer), there is a finite and well defined set of events (event 1 , event 2 , …,event m ) that can affect the future behaviour of the contract. The occurrence of event i determines what objects (variables, files, database, etc.)…”

Section: Mapping Conditions Rights and Obligations Into A Fsmmentioning

confidence: 99%

“…For non-repudiable information sharing we suggest the use of a B2BObject middleware [2] developed at Newcastle University. It is distributed object-based middleware, implemented in Java that supports information sharing between parties that do not necessarily trust each other.…”

Section: Infrastructure Supportmentioning

confidence: 99%

Contract representation for run-time monitoring and enforcement

Molina-Jiménez

Shrivastava

Solaiman

et al.

IEEE International Conference on E-Commerce, 2003. CEC 2003.

Self Cite

View full text Add to dashboard Cite

Converting a conventional contract into an electronic equivalent that can be executed and enforced by computers is a challenging task. The difficulties are caused by the ambiguities that the original human-oriented text is likely to contain. The conversion process involves the conversion of the original text into mathematical notation. In this paper we discuss how standard conventional contracts can be described by means of Finite State Machines (FSMs). This mathematical description helps eliminate ambiguities from the original text before the contract is coded into a computer program. The paper describes how to map the rights and obligations extracted from the clauses of the contract into the states, transition and output functions, and input and output symbols of a FSM. The FSM guarantees that the clauses stipulated in the contract are observed when the program that implements the contract is executed. Also, the paper suggests a middleware service required for the enactment of the contract represented as a FSM. Keywords

show abstract

Distributed object middleware to support dependable information sharing between organisations

Cited by 19 publications

References 11 publications

Dynamic Authentication for Cross-Realm SOA-Based Business Processes

Dynamic Authentication for Cross-Realm SOA-Based Business Processes

Middleware Support for Non-repudiable Transactional Information Sharing between Enterprises

Contract representation for run-time monitoring and enforcement

Contact Info

Product

Resources

About