Maintaining Trustworthiness of Socio-Technical Systems at Run-Time

Trustworthiness of dynamical and distributed socio-technical systems is a key factor for the success and wide adoption of these systems in digital businesses. Different trustworthiness attributes should be identified and accounted for when such systems are built, and in order to maintain their overall trustworthiness they should be monitored during run-time. Trustworthiness monitoring is a critical task which enables providers to significantly improve the systems’ overall acceptance. However, trustworthiness characteristics are poorly monitored, diagnosed and assessed by existing methods and technologies. In this paper, we address this problem and provide support for semi-automatic trustworthiness maintenance. We propose a trustworthiness maintenance framework for monitoring and managing the system’s trustworthiness properties in order to preserve the overall established trust during run-time. The framework provides an ontology for run-time trustworthiness maintenance, and respective business processes for identifying threats and enacting control decisions to mitigate these threats. We also present use cases and an architecture for developing trustworthiness maintenance systems that support system providers.

[1]  R. Núñez Queija,et al.  Dynamic Profit Optimization of Composite Web Services with SLAs , 2011, 2011 IEEE Global Telecommunications Conference - GLOBECOM 2011.

[2]  Edward Amoroso,et al.  A process-oriented methodology for assessing and improving software trustworthiness , 1994, CCS '94.

[3]  Tao Yu,et al.  Efficient algorithms for Web services selection with end-to-end QoS constraints , 2007, TWEB.

[4]  Frances M. T. Brazier,et al.  Monitoring and Reputation Mechanisms for Service Level Agreements , 2008, GECON.

[5]  Jeffrey O. Kephart,et al.  The Vision of Autonomic Computing , 2003, Computer.

[6]  David Sinreich,et al.  An architectural blueprint for autonomic computing , 2006 .

[7]  Jerome A. Rolia,et al.  Characterizing the scalability of a large web-based shopping system , 2001, ACM Trans. Internet Techn..

[8]  Frances M. T. Brazier,et al.  Secure Monitoring of Service Level Agreements , 2010, 2010 International Conference on Availability, Reliability and Security.

[9]  David Luckham,et al.  The power of events - an introduction to complex event processing in distributed enterprise systems , 2002, RuleML.

[10]  Andrew Tokmakoff,et al.  Managing Trustworthiness in Component-based Embedded Systems , 2007, STM.

[11]  F. Brazier,et al.  NEGOTIATION AND MONITORING OF SERVICE LEVEL AGREEMENTS , 2010 .

[12]  Shenghui Zhao,et al.  A Framework for Trustworthy Web Service Management , 2009, 2009 Second International Symposium on Electronic Commerce and Security.

[13]  Klaus Pohl,et al.  An Analysis of Software Quality Attributes and Their Contribution to Trustworthiness , 2013, CLOSER.

[14]  Padmanabhan Santhanam,et al.  Metrics to evaluate vendor-developed software based on test case execution results , 2002, IBM Syst. J..

[15]  Wolfgang Ziegler,et al.  Grids and Service-Oriented Architectures for Service Level Agreements , 2010 .

[16]  Jimmy McGibney,et al.  Trustworthiness monitoring and prediction of composite services , 2012, 2012 IEEE Symposium on Computers and Communications (ISCC).