Designing Secure Service Workflows in BPEL

Pino, Luca; Mahbub, Khaled; Spanoudakis, George

doi:10.1007/978-3-662-45391-9_48

Cited by 6 publications

(2 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This, however, turned out to be inefficient for both specifying and applying patterns for secure service composition. In [26], we presented the initial version of the algorithm for inferring service level from workflow level security properties, and provided an overview of how it could support workflow verification/adaptation without any algorithmic details for these processes. In [28], we presented formal proofs of some SCO patterns (e.g., integrity) and an initial prototype of our approach focusing on security-driven service discovery.…”

Section: Introductionmentioning

confidence: 99%

Pattern-Based Design and Verification of Secure Service Compositions

Pino

Spanoudakis

Krotsiani

et al. 2020

IEEE Trans. Serv. Comput.

Self Cite

View full text Add to dashboard Cite

This is the accepted version of the paper.This version of the publication may differ from the final published version. Abstract-Ensuring the preservation of security is a key requirement and challenge for Service-Based Systems (SBS) due to the use of third party software services not operating under different security perimeters. In this paper, we present an approach for verifying the security properties of SBS workflows and adapting them if such properties are not preserved. Our approach uses secure service composition patterns. These patterns encode proven dependencies between service level and workflow level security properties. These dependencies are used in reasoning processes supporting the verification of SBS workflows with respect to workflow security properties and their adaptation in ways that guarantee the properties if necessary. Our approach has been implemented by extending the Eclipse BPEL Designer and validated experimentally. The experimental evaluation has produced positive results, indicating that even for complex workflows and large sets of secure service composition patterns verification can be performed efficiently. Permanent repository link

show abstract

Section: Introductionmentioning

confidence: 99%

Pattern-Based Design and Verification of Secure Service Compositions

Pino

Spanoudakis

Krotsiani

et al. 2020

IEEE Trans. Serv. Comput.

Self Cite

View full text Add to dashboard Cite

show abstract

“…Even though patterns have been mainly applied on software development, the method can be used satisfactorily for the component composition of systems such as CPS [14]. Security patterns, for service compositions based on enabling reasoning engines such as Drools, are described in [15], [16]. In our approach instead of service composition, the concept of component compositions is proposed.…”

Section: Related Workmentioning

confidence: 99%

A Pattern-Based Approach for Designing Reliable Cyber-Physical Systems

Petroulakis

Spanoudakis

Askoxylakis

et al. 2015

2015 IEEE Global Communications Conference (GLOBECOM)

Self Cite

View full text Add to dashboard Cite

Abstract-Cyber-Physical Systems (CPS) appear to be of paramount importance due to their increasing use on critical infrastructure. New challenges have occurred because of the nature and the complexity of such systems in supporting heterogeneous physical and cyber components simultaneously. Failures or attacks on system components decrease system reliability creating severe consequences to CPS and the attached applications. The construction of complex CPS with respect to security and dependability (S&D) properties is necessary to avoid system vulnerabilities at design level. Design patterns are solutions for reusable designs and interactions of objects. In this work we present a pattern-based language for designing CPS able to guarantee S&D properties. The first set of S&D patterns includes the Reliability Component Composition (RCC) Patterns for designing reliable CPS. RCC patterns are encoded in Drools, which is a rule-based reasoning system. To evaluate our approach, we use RCC patterns as a methodology for designing a reliable wireless sensor network attached to a physical architecture to send monitored data to a central controller through relay nodes and paths.

show abstract

IDEAL-CITIES - A Trustworthy and Sustainable Framework for Circular Smart Cities

Angelopoulos

Katos

Κωστούλας

et al. 2019

2019 15th International Conference on Distributed Computing in Sensor Systems (DCOSS)

View full text Add to dashboard Cite

Reflecting upon the sustainability challenges cities will be facing in the near future and the recent technological developments allowing cities to become "smart", we introduce IDEAL-CITIES; a framework aiming to provide an architecture for cyber-physical systems to deliver a datadriven Circular Economy model in a city context. In the IDEAL-CITIES ecosystem, the city's finite resources as well as citizens will form the pool of intelligent assets in order to contribute to high utilization through crowdsourcing and real-time decision making and planning. We describe two use cases as a vehicle to demonstrate how a smart city can serve the Circular Economy paradigm.

show abstract

Designing Secure Service Workflows in BPEL

Cited by 6 publications

References 16 publications

Pattern-Based Design and Verification of Secure Service Compositions

Pattern-Based Design and Verification of Secure Service Compositions

A Pattern-Based Approach for Designing Reliable Cyber-Physical Systems

IDEAL-CITIES - A Trustworthy and Sustainable Framework for Circular Smart Cities

Contact Info

Product

Resources

About