pdfreaders.org

A Framework for Secure Service Composition

by Achim D. Brucker, Francesco Malmignati, Madjid Merabti, Qi Shi, and Bo Zhou

Cover for talk:brucker.ea:framework:2013.Modern applications are inherently heterogeneous: they are built by composing loosely coupled services that are, usually, offered and operated by different service providers. While this approach increases the flexibility of the composed applications, it makes the implementation of security and trustworthiness requirements much more difficult. As the requirements for security and trustworthiness, in nearly all sectors, are increasing dramatically, there is a need for new approaches that integrate security requirements right from the beginning while composing service-based applications.

In this paper, we present a framework for secure service composition using a model-based approach for specifying, building, and executing composed services. As a unique feature, this framework integrates security requirements as a first class citizen and, thus, avoids the "security as an afterthought" paradigm.

Keywords: secure service composition, BPMN, service modelling, service availability
Categories:
Documents: (full text as PDF file)

QR Code for talk:brucker.ea:framework:2013.Please cite this article as follows:
Achim D. Brucker, Francesco Malmignati, Madjid Merabti, Qi Shi, and Bo Zhou. A Framework for Secure Service Composition. ASE/IEEE International Conference on Information Privacy, Security, Risk and Trust (PASSAT), Washington D.C., USA, 11. sep. 2013.
Keywords: secure service composition, BPMN, service modelling, service availability
(slides) (handout) (full text as PDF file) (BibTeX) (Share article on LinkedIn. Share article on CiteULike. )

BibTeX
@Talk{ talk:brucker.ea:framework:2013,
abstract = {Modern applications are inherently heterogeneous: they are built by composing loosely coupled services that are, usually, offered and operated by different service providers. While this approach increases the flexibility of the composed applications, it makes the implementation of security and trustworthiness requirements much more difficult. As the requirements for security and trustworthiness, in nearly all sectors, are increasing dramatically, there is a need for new approaches that integrate security requirements right from the beginning while composing service-based applications.\\\\In this paper, we present a framework for secure service composition using a model-based approach for specifying, building, and executing composed services. As a unique feature, this framework integrates security requirements as a first class citizen and, thus, avoids the ``security as an afterthought'' paradigm.},
address = {Washington D.C., USA},
author = {Achim D. Brucker and Francesco Malmignati and Madjid Merabti and Qi Shi and Bo Zhou},
day = {11},
event = {ASE/IEEE International Conference on Information Privacy, Security, Risk and Trust (PASSAT)},
handout = {https://www.brucker.ch/bibliography/download/2013/talk-brucker.ea-framework-2013-2x2.pdf},
isodate = {2013-09-11},
keywords = {secure service composition, BPMN, service modelling, service availability},
language = {USenglish},
month = {sep},
pdf = {https://www.brucker.ch/bibliography/download/2013/brucker.ea-framework-2013.pdf},
publisher = {IEEE Computer Society},
slides = {https://www.brucker.ch/bibliography/download/2013/talk-brucker.ea-framework-2013.pdf},
slideshare = {26227039},
slideshare_height = {356},
slideshare_width = {427},
title = {A Framework for Secure Service Composition},
url = {https://www.brucker.ch/bibliography/abstract/talk-brucker.ea-framework-2013},
year = {2013},
}