Towards Security-Enhanced and Privacy-Preserving Mashup Compositions

In recent years, there has been an emerging trend towards people building their own sophisticated applications to automate their daily tasks without specialized programming knowledge. Enterprise mash-ups facilitate end users’ development of applications in a business context autonomously or with minimal support from the software engineering staff. Hence, mashup solutions are aimed at exploiting the full potential of end users’ software development. However, the use of mashup solutions for business tasks gives rise to several security and privacy-related questions, since sensitive data records could be created even with simple procedures. In this paper, we propose an approach where security rules for mashup compositions can be defined, and submitted mashups are automatically evaluated for compliance with the respective policies.

[1]  Alda Lopes Gançarski,et al.  Privacy-Preserving Data Mashup , 2011, AINA.

[2]  Katarina Stanoevska-Slabeva,et al.  Enterprise Mashups: Design Principles towards the Long Tail of User Needs , 2008, 2008 IEEE International Conference on Services Computing.

[3]  Brian Beckman Why LINQ Matters: Cloud Composability Guaranteed , 2012 .

[4]  Christopher J. Pavlovski,et al.  Towards Accountable Enterprise Mashup Services , 2007 .

[5]  Martin Wolf,et al.  Enterprise Mashup Systems as Platform for Situational Applications , 2010, Bus. Inf. Syst. Eng..

[6]  Elisa Bertino,et al.  Database security - concepts, approaches, and challenges , 2005, IEEE Transactions on Dependable and Secure Computing.

[7]  A Min Tjoa,et al.  Privacy Aspects of Mashup Architecture , 2010, 2010 IEEE Second International Conference on Social Computing.

[8]  Philip S. Yu,et al.  Privacy-preserving data publishing: A survey of recent developments , 2010, CSUR.

[9]  Athman Bouguettaya,et al.  Service-Oriented Computing - ICSOC 2008, 6th International Conference, Sydney, Australia, December 1-5, 2008. Proceedings , 2008, ICSOC.

[10]  Volker Hoyer,et al.  Market Overview of Enterprise Mashup Tools , 2008, ICSOC.

[11]  Katarina Stanoevska-Slabeva,et al.  The Changing Role of IT Departments in Enterprise Mashup Environments , 2008, ICSOC Workshops.

[12]  San Murugesan,et al.  Understanding Web 2.0 , 2007, IT Professional.

[13]  Michael Ogrinz Mashup Patterns: Designs and Examples for the Modern Enterprise , 2009 .