Skip to main content
SpringerLink
Log in
Book cover

Secure and Trustworthy Service Composition pp 192–202Cite as

Security Policy Monitoring of Composite Services

  • Chapter

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 8900))

Abstract

One important challenge the Aniketos platform has to address is the effective monitoring of services at runtime to ensure that services behave as promised. A service developer plays the role that is responsible for constructing service compositions and the service provider is responsible for offering them to consumers of the Aniketos platform. Typically, service consumers will have different needs and requirements; they have varying business goals and different expectations from a service, for example in terms of functionality, quality of service and security needs. Given this, it is important to ensure that a service should deliver for which it has been selected and should match the consumer’s expectations. If it fails, the system should take appropriate subsequent reactions, e.g., notifications to the service consumer or service designer.

In this chapter, we present the policy-driven monitoring framework which is developed as part of the Aniketos project. The monitoring framework allows different user-specified policies to be monitored simultaneously. The monitoring is performed at the business level, as well as at the implementation level, which allows for checking the policies of composite services as well as atomic ones. The framework sends an alarm in case of policy violation to notify the interested parties and triggers re-composition or re-configuration of the service.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Ghezzi, C., Guinea, S.: Run-time Monitoring in Service Oriented Architectures. In: Test and Analysis of Web Services. Springer, Heidelberg (2007)

    Google Scholar 

  2. OMG, Business Process Model and Notation (BPMN) Version 2.0 (2011), http://www.omg.org/spec/BPMN/2.0/

  3. Rademakers, T.: Activiti in Action:Executable business processes in BPMN 2.0. Manning Publications (2012)

    Google Scholar 

  4. Baresi, L., Guinea, S., Nano, O., Spanoudakis, G.: Comprehensive monitoring of BPEL processes. IEEE Internet Computing 14(3), 50–57 (2010)

    Article  Google Scholar 

  5. Haiteng, Z., Zhiqing, S., Hong, Z.: Runtime Monitoring Web Services Implemented in BPEL. In: International Conference on Uncertainty Reasoning and Knowledge Engineering (URKE), Bali, Indonesia, vol. 1, pp. 228–231 (2011)

    Google Scholar 

  6. Wu, G., Wei, J., Huang, T.: Flexible Pattern Monitoring for WS-BPEL through Stateful Aspect Extension. In: Proc. of the IEEE Intl. Conf. on Web Services (ICWS 2008), Beijing, China, pp. 577–584 (2008)

    Google Scholar 

  7. Baresi, L., Ghezzi, C., Guinea, S.: Smart Monitors for Composed Services. In: Proceedings of the 2nd International Conference on Service Oriented Computing (ICSOC 2004), New York, USA, pp. 193–202 (2004)

    Google Scholar 

  8. Aniketos Consortium, Deliverable D9.2: Demonstration material and events from the complete project (2012)

    Google Scholar 

  9. eXtensible Access Control Markup Language (XACML) Version 3.0, http://docs.oasis-open.org/xacml/3.0/xacml-3.0-core-spec-os-en.pdf

  10. Shanahan, M.: The Event Calculus Explained. In: Veloso, M.M., Wooldridge, M.J. (eds.) Artificial Intelligence Today. LNCS (LNAI), vol. 1600, pp. 409–430. Springer, Heidelberg (1999)

    Chapter  Google Scholar 

  11. Bonatti, P.A., De Coi, J.L., Olmedilla, D., Sauro, L.: PROTUNE: A Rule-based PROvisionalTrUst Negotia-tion Framework (2010)

    Google Scholar 

  12. Aktug, I., Naliuka, K.: ConSpec: A Formal Language for Policy Specification. In: Proceedings of the First International Workshop on Run Time Enforcement for Mobile and Distributed Systems (2007)

    Google Scholar 

  13. Erlingsson, U.: The inlined reference monitor approach to security policy enforcement. PhD thesis, Department of Computer Science, Cornell University (2004)

    Google Scholar 

  14. Brucker, A.D.: Integrating Security Aspects into Business Process Models. IT - Information Technology 55(6), 239–246 (2013)

    Article  Google Scholar 

  15. S3MS project, http://researchprojects.kth.se/index.php/kb_1/io_9718/io.html

  16. Activiti engine, http://www.activiti.org/

  17. Aniketos Consortium, Deliverable D9.2: Demonstration material and events from the complete project (2012)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. School of Computing and Mathematical Sciences, Liverpool John Moores University, UK

    Muhammad Asim, Brett Lempereur & Qi Shi

  2. Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche, Italy

    Artsiom Yautsiukhin

  3. SAP SE, Vincenz-Priessnitz-Str. 1, 76131, Karlsruhe, Germany

    Achim D. Brucker

Authors
  1. Muhammad Asim
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Artsiom Yautsiukhin
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Achim D. Brucker
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Brett Lempereur
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Qi Shi
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. SAP SE, Vincenz-Priessnitz-Str. 1, 76131, Karlsruhe, Germany

    Achim D. Brucker

  2. Utrecht University, PO Box 80.089, 3508 TB, Utrecht, The Netherlands

    Fabiano Dalpiaz

  3. DISI, University of Trento, Via Sommarive 5, 38123, Povo, Trento, Italy

    Paolo Giorgini

  4. SINTEF ICT, Strindveien 4, 7465, Trondheim, Norway

    Per Håkon Meland

  5. Parque Tecnológico de Bizkaia, TECNALIA Research & Innovation, Edifício 202, 48170, Zamudio, Spain

    Erkuden Rios

Rights and permissions

Reprints and permissions

Copyright information

© 2014 Springer International Publishing Switzerland

About this chapter

Cite this chapter

Asim, M., Yautsiukhin, A., Brucker, A.D., Lempereur, B., Shi, Q. (2014). Security Policy Monitoring of Composite Services. In: Brucker, A.D., Dalpiaz, F., Giorgini, P., Meland, P.H., Rios, E. (eds) Secure and Trustworthy Service Composition. Lecture Notes in Computer Science, vol 8900. Springer, Cham. https://doi.org/10.1007/978-3-319-13518-2_13

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-13518-2_13

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-13517-5

  • Online ISBN: 978-3-319-13518-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation