Hoisl, Bernhard, Sobernig, Stefan. 2011. Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models. In Proceedings of the International Workshop on Security Aspects of Process-aware Information Systems (SAPAIS), Hrsg. N.N. S. 673-679. Washington, D.C. IEEE Computer Society Press.

BibTeX

@INPROCEEDINGS{Hoisl2011,
title = {Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models},
author = {Bernhard Hoisl and Stefan Sobernig},
publisher = {IEEE Computer Society Press},
year = {2011},
address = {Washington, D.C.},
publisher = {IEEE Computer Society Press},
language = {EN},
pages = {673-679},
series = {Proceedings of the International Workshop on Security Aspects of Process-aware Information Systems (SAPAIS)},
abstract = {This paper presents an approach for incorporating data integrity and data confidentiality into the model-driven development (MDD) of process-driven service-oriented architectures (SOAs) based on the OMG SoaML. Specifications for service interfaces are extended by UML activities to model invocation protocols. An invocation protocol makes the control and the object flows between service invocations explicit. Integrity and confidentiality attributes are used to annotate the object flows. The annotations serve for generating security-aware execution artefacts (e.g., interface description documents, deployment descriptors, and middleware configurations). We applied the approach prototypically in a Web Services platform environment (WS-BPEL, WSDL, WS-SecurityPolicy).},
}

Abstract

This paper presents an approach for incorporating data integrity and data confidentiality into the model-driven development (MDD) of process-driven service-oriented architectures (SOAs) based on the OMG SoaML. Specifications for service interfaces are extended by UML activities to model invocation protocols. An invocation protocol makes the control and the object flows between service invocations explicit. Integrity and confidentiality attributes are used to annotate the object flows. The annotations serve for generating security-aware execution artefacts (e.g., interface description documents, deployment descriptors, and middleware configurations). We applied the approach prototypically in a Web Services platform environment (WS-BPEL, WSDL, WS-SecurityPolicy).

Publication's profile

Status of publication Published
Affiliation WU
Type of publication Contribution to conference proceedings
Language English
Title Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models
Title of whole publication Proceedings of the International Workshop on Security Aspects of Process-aware Information Systems (SAPAIS)
Editor N.N.
Page from 673
Page to 679
Location Washington, D.C.
Publisher IEEE Computer Society Press
Year 2011

Associations

Projects
Domain-Specific Languages for Model-Driven Security Engineering
People
Hoisl, Bernhard (Former researcher)
Sobernig, Stefan (Details)
Organization
Information Systems and New Media IN (Details)
Research areas (Ă–STAT Classification 'Statistik Austria')
1108 Informatics (Details)
1109 Information and data processing (Details)
1140 Software engineering (Details)
5367 Management information systems (Details)
Google Scholar: Search