We focus on the assessment of the security of business processes. We assume that a business process is composed of abstract services, each of which has several concrete instantiations. Essential peculiarity of our method is that we express security metrics used for the evaluation of security properties as semirings. First, we consider primitive decomposition of the business process into a weighted graph which describes possible implementations of the business process. Second, we evaluate the security using semiring-based methods for graph analysis. Finally, we exploit semirings to describe the mapping between security metrics which is useful when different metrics are used for the evaluation of security properties of services. © 2011 Springer-Verlag.
CITATION STYLE
Krautsevich, L., Martinelli, F., & Yautsiukhin, A. (2011). A general method for assessment of security in complex services. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 6994 LNCS, pp. 153–164). https://doi.org/10.1007/978-3-642-24755-2_14
Mendeley helps you to discover research relevant for your work.