Modeling and Enforcing Secure Object Flows in Process-driven SOAs: An Integrated Model-driven Approach

Publication: Scientific journalJournal articlepeer-review

Abstract

In this paper, we present an integrated model-driven approach for the specification and the enforcement of secure object flows in process-driven service-oriented architectures (SOA). In this context, a secure object flow ensures the confidentiality and the integrity of important objects (such as business contracts or electronic patient records) that are passed between different participants in SOA-based business processes. We specify a formal and generic metamodel for secure object flows that can be used to extend arbitrary process modeling languages. To demonstrate our approach, we present a UML extension for secure object flows. Moreover, we describe how platform-independent models are mapped to platform-specific software artifacts via automated model transformations. In addition, we give a detailed description of how we integrated our approach with the Eclipse modeling tools.
Original languageEnglish
Pages (from-to)513 - 548
JournalSoftware & Systems Modeling
Volume13
Issue number2
DOIs
Publication statusPublished - 1 Apr 2014

Austrian Classification of Fields of Science and Technology (ÖFOS)

  • 102016 IT security
  • 102
  • 102022 Software development
  • 502050 Business informatics

Cite this