Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models

Bernhard Hoisl (Speaker)

Institute for Complex Networks

Activity: Talk or presentation › Science to science

Description

This paper presents an approach for incorporating data integrity and data confidentiality into the model-driven development (MDD) of process-driven service-oriented architectures (SOAs) based on the OMG SoaML. Specifications for service interfaces are extended by UML activities to model invocation protocols. An invocation protocol makes the control and the object flows between service invocations explicit. Integrity and confidentiality attributes are used to annotate the object flows. The annotations serve for generating security-aware execution artefacts (e.g., interface description documents, deployment descriptors, and middleware configurations). We applied the approach prototypically in a Web Services platform environment (WS-BPEL, WSDL, WS-SecurityPolicy).

Period	22 Aug 2011 → 26 Aug 2011
Event title	International Workshop on Security Aspects of Process-aware Information Systems (SAPAIS) at the 6th International Conference on Availability, Reliability and Security (ARES)
Event type	Unknown
Degree of Recognition	National

Austrian Classification of Fields of Science and Technology (ÖFOS)

102
102022 Software development
502050 Business informatics

Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models

Description

Austrian Classification of Fields of Science and Technology (ÖFOS)

Related content

Projects

Domain-Specific Languages for Model-Driven Security Engineering