Security Property Lifecycle Management for Secure Service Compositions

Shahidul Hoque, Aneel Rahim, David Llewellyn-Jones, Madjid Merabti

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

We present an approach to deploying a security property life cycle management mechanism for secure service composition. A Security Property Determination Module component is introduced that forms part of the Aniketos project, in the context of a case study relating to an online payment system that has been developed using real services deployed within the Activiti BPMN service process engine. Both the theory behind the implementation as well as the implementation itself will be discussed, along with the lessons learnt and the potential for future improvements to the lifecycle mechanism. The mechanism integrates tightly with the verification processes of the Aniketos platform. It also allows the security property lifecycle to be managed at run-time without user intervention. The mechanism unifies the verification of imported properties and the digital signing and storage of properties associated with both atomic and composed services. These integrated capabilities form a novel approach discussed and situated in the context of the case study.

Original languageEnglish
Title of host publicationCyber Security and Privacy - Trust in the Digital World and Cyber Security and Privacy EU Forum 2013, Revised Selected Papers
PublisherSpringer
Pages67-78
Number of pages12
ISBN (Print)9783642412042
DOIs
Publication statusPublished - 2013
EventTrust in the Digital World and Cyber Security and Privacy EU Forum, CSP EU Forum 2013 - Brussels, Belgium
Duration: 18 Apr 201319 Apr 2013

Publication series

NameCommunications in Computer and Information Science
Volume182 CCIS
ISSN (Print)1865-0929

Conference

ConferenceTrust in the Digital World and Cyber Security and Privacy EU Forum, CSP EU Forum 2013
Country/TerritoryBelgium
CityBrussels
Period18/04/201319/04/2013

Fingerprint

Dive into the research topics of 'Security Property Lifecycle Management for Secure Service Compositions'. Together they form a unique fingerprint.

Cite this