Abstract
We present a framework for designing and composing services in a secure manner. Services can enforce security policies locally, and can invoke other services in a "call-by-contract" fashion. This mechanism offers a significant set of opportunities, each driving secure ways to compose services. We discuss how to correctly plan service orchestrations in some relevant classes of services and security properties. To this aim, we propose both a core functional calculus for services and a graphical design language. The core calculus is called λreg [10]. It features primitives for selecting and invoking services that respect given behavioural requirements. Critical code can be enclosed in security framings, with a possibly nested, local scope. These framings enforce safety properties on execution histories. A type and effect system over-approximates the actual run-time behaviour of services. Effects include the actions with possible security concerns, as well as information about which services may be selected at run-time. A verification step on these effects allows for detecting the viable plans that drive the selection of those services that match the security requirements on demand. © Springer-Verlag Berlin Heidelberg 2007.
Cite
CITATION STYLE
Bartoletti, M., Degano, P., Ferrari, G. L., & Zunino, R. (2007). Secure service orchestration. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4677 LNCS, pp. 24–74). Springer Verlag. https://doi.org/10.1007/978-3-540-74810-6_2
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
