Evolving Security Requirements in Multi-layered Service-Oriented-Architectures
| Autor: | Gabriel Serme, Mario Südholt, Muhammad Sabir Idrees, Anderson Santana de Oliveira, Hervé Grall, Yves Roudier |
|---|---|
| Přispěvatelé: | Eurecom [Sophia Antipolis], SAP Research [Belfast], SAP, Laboratoire d'Informatique de Nantes Atlantique (LINA), Mines Nantes (Mines Nantes)-Université de Nantes (UN)-Centre National de la Recherche Scientifique (CNRS), Aspect and composition languages (ASCOLA), Mines Nantes (Mines Nantes)-Université de Nantes (UN)-Centre National de la Recherche Scientifique (CNRS)-Mines Nantes (Mines Nantes)-Université de Nantes (UN)-Centre National de la Recherche Scientifique (CNRS)-Département informatique - EMN, Mines Nantes (Mines Nantes)-Inria Rennes – Bretagne Atlantique, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria) |
| Rok vydání: | 2012 |
| Předmět: |
Service (business)
Engineering [INFO.INFO-PL]Computer Science [cs]/Programming Languages [cs.PL] Process management Cloud computing security Business process computer.internet_protocol business.industry Cloud computing [INFO.INFO-SE]Computer Science [cs]/Software Engineering [cs.SE] Service-oriented architecture Computer security model Computer security computer.software_genre [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] Security service Orchestration (computing) business computer |
| Zdroj: | Data Privacy Management and Autonomous Spontaneus Security ISBN: 9783642288784 DPM/SETOP 4th International Workshop on Autonomous and Spontaneous Security 4th International Workshop on Autonomous and Spontaneous Security, Sep 2011, Leuven, Belgium |
| DOI: | 10.1007/978-3-642-28879-1_13 |
| Popis: | International audience; Due to today's rapidly changing corporate environments, business processes are increasingly subject to dynamic configuration and evolution. The evolution of new deployment architectures, as illustrated by the move towards mobile platforms and the Internet Of Services, and the introduction of new security regulations (imposed by national and international regulatory bodies, such as SOX4 or BASEL5) are an im- portant constraint in the design and development of business processes. In such context, it is not sufficient to apply the corresponding adapta- tions only at the service orchestration or at the choreography level; there is also the need for controlling the impact of new security requirements to several architectural layers, specially in cloud computing, where the notion of Platforms as Services and Infrastructure as Services are fun- damental. In this paper we survey several research questions related to security cross-domain and cross-layer security functionality in Service Oriented Architectures, from an original point of view. We provide the first insights on how a general service model empowered with aspect oriented programming capabilities can provide clean modularization to such cross-cutting security concerns. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|