Managing Impacts of Security Protocol Changes in Service-Oriented Applications

Skogsrud, Halvard; Benatallah, Boualem; Casati, Fabio; Toumani, Farouk

doi:10.1109/icse.2007.49

Cited by 22 publications

(11 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition, this work is based on the methodology developed in our previous work [Skosgrud et al 2007], which supports the evolution management of security protocols (i.e., trust negotiation protocol). The approach presents constraints specific to security protocols and provides analysis methods for the change impact of security protocols.…”

Section: Database Schema Evolutionmentioning

confidence: 99%

Supporting the dynamic evolution of Web service protocols in service-oriented architectures

Ryu

Casati

Skogsrud³

et al. 2008

ACM Trans. Web

Self Cite

View full text Add to dashboard Cite

In service-oriented architectures, everything is a service and everyone is a service provider. Web services (or simply services) are loosely coupled software components that are published, discovered, and invoked across the Web. As the use of Web service grows, in order to correctly interact with them, it is important to understand the business protocols that provide clients with the information on how to interact with services. In dynamic Web service environments, service providers need to constantly adapt their business protocols for reflecting the restrictions and requirements proposed by new applications, new business strategies, and new laws, or for fixing problems found in the protocol definition. However, the effective management of such a protocol evolution raises critical problems: one of the most critical issues is how to handle instances running under the old protocol when it has been changed. Simple solutions, such as aborting them or allowing them to continue to run according to the old protocol, can be considered, but they are inapplicable for many reasons (for example, the loss of work already done and the critical nature of work). In this article, we present a framework that supports service managers in managing the business protocol evolution by providing several features, such as a variety of protocol change impact analyses automatically determining which ongoing instances can be migrated to the new version of protocol, and data mining techniques inferring interaction patterns used for classifying ongoing instances migrateable to the new protocol. To support the protocol evolution process, we have also developed

show abstract

Section: Database Schema Evolutionmentioning

confidence: 99%

Supporting the dynamic evolution of Web service protocols in service-oriented architectures

Ryu

Casati

Skogsrud³

et al. 2008

ACM Trans. Web

Self Cite

View full text Add to dashboard Cite

show abstract

“…Mainly, there are three aspects of service changes including interface changes, protocol changes and QoS changes. Existing research addresses inter-service dependency analysis [3,33,52,61,75,76], SLA violations [22,24,63] and protocol changes [62,65] at the service level. Graphbased dependency analysis and formal specifications also dominate inter-service dependency analysis.…”

Section: Inter-service Impact Analysis and Propagationmentioning

confidence: 99%

Impact analysis and change propagation in service-oriented enterprises: A systematic review

Alam

Ahmad

Akhunzada

et al. 2015

Information Systems

View full text Add to dashboard Cite

“…A significant disadvantage of these approaches is that they do not allow verification of non-functional requirements such as integrity of the web services [2,3], information flow properties. To overcome the above shortcomings, we employ a hardware-based trust mechanism called Trusted Platform Module to bootstrap trust in a service-oriented architecture.…”

Section: Introductionmentioning

confidence: 99%

Security of SOA based on TPM

Yang

2010

2010 2nd International Conference on Computer Engineering and Technology

View full text Add to dashboard Cite

SOA has the characteristic of abstraction, loose coupling and interoperability, but there are some defect related to security and trust. How to specify and verify functional and non-functional requirements for serviceoriented architectures had received much attention recently. This paper is to employ a hardware-based trust mechanism called Trusted Platform Module to bootstrap trust in a serviceoriented architecture. This paper propose an architecture that serves to monitor remotely hosted web services and give an assurance about their integrity. The results show that it is feasible to effectively monitor web services in a service oriented architecture for privacy and integrity.

show abstract

Managing Impacts of Security Protocol Changes in Service-Oriented Applications

Cited by 22 publications

References 11 publications

Supporting the dynamic evolution of Web service protocols in service-oriented architectures

Supporting the dynamic evolution of Web service protocols in service-oriented architectures

Impact analysis and change propagation in service-oriented enterprises: A systematic review

Security of SOA based on TPM

Contact Info

Product

Resources

About