Hoisl, Bernhard. 2011. Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models. International Workshop on Security Aspects of Process-aware Information Systems (SAPAIS) at the 6th International Conference on Availability, Reliability and Security (ARES), Vienna, Österreich, 22.08.-26.08..
BibTeX
title = {Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models},
author = {Bernhard Hoisl},
year = {2011},
address = {Vienna},
language = {EN},
misc = {International Workshop on Security Aspects of Process-aware Information Systems (SAPAIS) at the 6th International Conference on Availability, Reliability and Security (ARES)},
abstract = {This paper presents an approach for incorporating data integrity and data confidentiality into the model-driven development (MDD) of process-driven service-oriented architectures (SOAs) based on the OMG SoaML. Specifications for service interfaces are extended by UML activities to model invocation protocols. An invocation protocol makes the control and the object flows between service invocations explicit. Integrity and confidentiality attributes are used to annotate the object flows. The annotations serve for generating security-aware execution artefacts (e.g., interface description documents, deployment descriptors, and middleware configurations). We applied the approach prototypically in a Web Services platform environment (WS-BPEL, WSDL, WS-SecurityPolicy).},
}
Abstract
This paper presents an approach for incorporating data integrity and data confidentiality into the model-driven development (MDD) of process-driven service-oriented architectures (SOAs) based on the OMG SoaML. Specifications for service interfaces are extended by UML activities to model invocation protocols. An invocation protocol makes the control and the object flows between service invocations explicit. Integrity and confidentiality attributes are used to annotate the object flows. The annotations serve for generating security-aware execution artefacts (e.g., interface description documents, deployment descriptors, and middleware configurations). We applied the approach prototypically in a Web Services platform environment (WS-BPEL, WSDL, WS-SecurityPolicy).
Tags (8)
Publication's profile
| Status of publication | Published |
|---|---|
| Affiliation | WU |
| Type of publication | Paper presented at an academic conference or symposium |
| Language | English |
| Title | Integrity and Confidentiality Annotations for Service Interfaces in SoaML Models |
| Event | International Workshop on Security Aspects of Process-aware Information Systems (SAPAIS) at the 6th International Conference on Availability, Reliability and Security (ARES) |
| Year | 2011 |
| Date | 22.08.-26.08. |
| Country | Austria |
| Location | Vienna |
Associations
- Projects
- Domain-Specific Languages for Model-Driven Security Engineering
- People
- Hoisl, Bernhard (Former researcher)
- Organization
- Information Systems and New Media IN (Details)
- Research areas (ÖSTAT Classification 'Statistik Austria')
- 1108 Informatics (Details)
- 1140 Software engineering (Details)
- 5367 Management information systems (Details)