Model-Driven Development of a Web Service-Oriented Architecture and Security Policies

Lecture Notes in Computer Science

et al. 2012

Self Cite

Abstract. As a common reference for many in-development standards and execution frameworks, special attention is being paid to ServiceOriented Architectures. SOAs modeling, however, is an área in which a consensus has not being achieved. Currently, standardization organizations are defining proposals to offer a solution to this problem. Nevertheless, until very recently, non-functional aspects of services have not been considered for standardization processes. In particular, there exists a lack of a design solution that permits an independent development of the functional and non-functional concerns of SOAs, allowing that each concern be addressed in a convenient manner in early stages of the development, in a way that could guarantee the quality of this type of systems. This paper, leveraging on previous work, presents an approach to intégrate security-related non-functional aspects (such as confidentiality, integrity, and access control) in the development of services.

Section: Integrating the Non-functional Concernsmentioning

confidence: 99%

Section: A Framework For the Inclusión Of Security Concernsmentioning

confidence: 99%

“…The sequence of steps to perform in the proposed approach, leveraging on that first introduced in [19], is presented here:…”

Section: Development Processmentioning

confidence: 99%

Section: Metamodelsmentioning

confidence: 99%

Section: Metamodelsmentioning

confidence: 99%

See 3 more Smart Citations

Domain-Specific Multi-modeling of Security Concerns in Service-Oriented Architectures

Lecture Notes in Computer Science

et al. 2012

Self Cite

Estrategia Guiada por Modelos para incluir Aspectos de Seguridad en Sistemas Empotrados Basados en Servicios Web

Revista Iberoamericana de Automática e Informática Industrial R

et al. 2014

Self Cite

En los sistemas distribuidos modernos, como la Internet o Web de las Cosas, la seguridad juega un papel preponderante. Debe prestarse especial atención a la consideración de estos aspectos en las primeras etapas de desarrollo. En este contexto, el desarrollo guiado por modelos de requisitos no funcionales (NF) presenta especial interés, ya que aborda dichas características NF en la etapa de diseño, cuando todavía se pueden realizar análisis, y aún hay margen para modificaciones antes de queéstas sean muy costosas. El uso de estas metodologías guiadas por modelos ofrece beneficios tales como el aumento de la productividad, una mayor reutilización de los elementos de diseño, o una mejor mantenibilidad del sistema. Este artículo presenta una estrategia de desarrollo que permite integrar aspectos NF de seguridad (confidencialidad, integridad, y control de acceso) en los sistemas de software empotrado.

Multi Domain-Specific Modeling of the Security Concerns of Service-Oriented Architectures

2011 IEEE International Conference on Services Computing

et al. 2011

Self Cite

Abstract-Service-Oriented Architectures (SOA), and Web Services (WS), the technology generally used to implement them, achieve the integration of heterogeneous technologies, providing interoperability, and yielding the reutilization of preexistent systems. Model-driven development methodologies provide inherent benefits such as increased productivity, greater reuse, and better maintainability, to ñame a few. Efforts on achieving model-driven development of SOAs already exist, but there is currently no standard solution that addresses nonfunctional aspects of these services as well. This paper presents an approach to intégrate these non-functional aspects in the development of web services, with an emphasis on security.