TY - GEN
T1 - Security Property Lifecycle Management for Secure Service Compositions
AU - Hoque, Shahidul
AU - Rahim, Aneel
AU - Llewellyn-Jones, David
AU - Merabti, Madjid
N1 - Funding Information:
The research leading to these results has received funding from the European Union Seventh Framework Programme (FP7/2007-2013) under grant no 257930 (Aniketos). We would like to thank all partners for their helpful contributions to this work.
PY - 2013
Y1 - 2013
N2 - We present an approach to deploying a security property life cycle management mechanism for secure service composition. A Security Property Determination Module component is introduced that forms part of the Aniketos project, in the context of a case study relating to an online payment system that has been developed using real services deployed within the Activiti BPMN service process engine. Both the theory behind the implementation as well as the implementation itself will be discussed, along with the lessons learnt and the potential for future improvements to the lifecycle mechanism. The mechanism integrates tightly with the verification processes of the Aniketos platform. It also allows the security property lifecycle to be managed at run-time without user intervention. The mechanism unifies the verification of imported properties and the digital signing and storage of properties associated with both atomic and composed services. These integrated capabilities form a novel approach discussed and situated in the context of the case study.
AB - We present an approach to deploying a security property life cycle management mechanism for secure service composition. A Security Property Determination Module component is introduced that forms part of the Aniketos project, in the context of a case study relating to an online payment system that has been developed using real services deployed within the Activiti BPMN service process engine. Both the theory behind the implementation as well as the implementation itself will be discussed, along with the lessons learnt and the potential for future improvements to the lifecycle mechanism. The mechanism integrates tightly with the verification processes of the Aniketos platform. It also allows the security property lifecycle to be managed at run-time without user intervention. The mechanism unifies the verification of imported properties and the digital signing and storage of properties associated with both atomic and composed services. These integrated capabilities form a novel approach discussed and situated in the context of the case study.
UR - http://www.scopus.com/inward/record.url?scp=84904893429&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-41205-9_6
DO - 10.1007/978-3-642-41205-9_6
M3 - Conference contribution
AN - SCOPUS:84904893429
SN - 9783642412042
T3 - Communications in Computer and Information Science
SP - 67
EP - 78
BT - Cyber Security and Privacy - Trust in the Digital World and Cyber Security and Privacy EU Forum 2013, Revised Selected Papers
PB - Springer
Y2 - 18 April 2013 through 19 April 2013
ER -