DS3I - A Dynamic Semantically Enhanced Service Selection Infrastructure

Abstract: Summary. Service-oriented computing (SOC), lately often in combination with business process modeling (BPM), is becoming reality in current enterprise systems. At the same time, process models do no longer only span different departments but more and more frequently multiple organizations. Current BPM approaches focus on syntactic specification of work flow structures and necessitate static service allocation during modeling time. Dynamic service allocation at runtime based on the semantics of service descript… Show more

“…Based on these works we presented an ESB-based approach that makes use of semantic service descriptions for discovery and mediation [12], [13].…”

“…1 gives a conceptual overview of our ESB-based infrastructure for dynamic service selection that builds the basis for the dynamic credential enrichment approach laid out in this work. Details on the overal infrastructure and semantically supported dynamic service selection have already been illustrated in [12], [13], [19] so that we merely focus on dynamic security credentials enrichment in this work. The basic idea is to introduce a layer of indirection between service requesters and service providers (SPs).…”

“…Credentials enrichment components in turn form the central elements of the overall proposal. They resort to the service repository (7) for discovery and selection of candidate services and to internal semantic or static mediation and transformation facilities for message processing and adaption [12], [13]. Beyond that, they interact with the IdP (6) to dynamically fetch user credentials and security tokens in the format required by the dynamically selected service instance.…”

“…3 illustrate the dynamic service discovery and credentials enrichment flow. Our approach for dynamic service discovery and binding has already been explained in [12], [13]. First, users (optionally) prepare a dedicated partial identity and authorize the security broker to access contained data (step (5)) before they dispatch a service invocation message toward the virtualized service interfaces operated by the infrastructure (step (6)).…”

“…Details on dynamic service selection ((A) and (B) in Fig. 5) have already been published in [12], [13] so that we only consider run-time credentials enrichment here. As can be seen in Figs.…”

User-Controlled Dynamic Access Credential Enrichment for Run-time Service Selection

“…Based on these works we presented an ESB-based approach that makes use of semantic service descriptions for discovery and mediation [12], [13].…”

“…1 gives a conceptual overview of our ESB-based infrastructure for dynamic service selection that builds the basis for the dynamic credential enrichment approach laid out in this work. Details on the overal infrastructure and semantically supported dynamic service selection have already been illustrated in [12], [13], [19] so that we merely focus on dynamic security credentials enrichment in this work. The basic idea is to introduce a layer of indirection between service requesters and service providers (SPs).…”

“…Credentials enrichment components in turn form the central elements of the overall proposal. They resort to the service repository (7) for discovery and selection of candidate services and to internal semantic or static mediation and transformation facilities for message processing and adaption [12], [13]. Beyond that, they interact with the IdP (6) to dynamically fetch user credentials and security tokens in the format required by the dynamically selected service instance.…”

“…3 illustrate the dynamic service discovery and credentials enrichment flow. Our approach for dynamic service discovery and binding has already been explained in [12], [13]. First, users (optionally) prepare a dedicated partial identity and authorize the security broker to access contained data (step (5)) before they dispatch a service invocation message toward the virtualized service interfaces operated by the infrastructure (step (6)).…”

“…Details on dynamic service selection ((A) and (B) in Fig. 5) have already been published in [12], [13] so that we only consider run-time credentials enrichment here. As can be seen in Figs.…”

User-Controlled Dynamic Access Credential Enrichment for Run-time Service Selection