An Approach to Automatically Check the Compliance of Declarative Deployment Models

The automation of application deployment has evolved into one of the most important issues in modern enterprise IT. Therefore, many deployment systems have been developed that process deployment models for automating the installation of systems. Creating such deployment models becomes more and more complex as compliance plays an increasingly important role. Not only external laws and regulations must be considered, but also a company’s internal requirements must be fulfilled. However, this is a very complex challenge for the modelers as they require a firm knowledge of all the compliance rules that must be observed. As a result, this often leads to deployment models that violate compliance rules due to manual modeling mistakes or because of unawareness. In this paper, we introduce an approach that enables modeling of reusable Deployment Compliance Rules that can be executed automatically to check such regulations in declarative deployment models at design time. We validate our approach with a prototype based on the TOSCA standard and the OpenTOSCA ecosystem.

[1]  Richard N. Taylor,et al.  A Classification and Comparison Framework for Software Architecture Description Languages , 2000, IEEE Trans. Software Eng..

[2]  F. Leymann,et al.  Towards an Approach for Automatically Checking Compliance Rules in Deployment Models , 2022 .

[3]  Frank Leymann,et al.  An approach to combine data-related and control-flow-related compliance rules , 2011, 2011 IEEE International Conference on Service-Oriented Computing and Applications (SOCA).

[4]  Philippe Kruchten,et al.  The 4+1 View Model of Architecture , 1995, IEEE Softw..

[5]  Oliver Kopp,et al.  Topology Splitting and Matching for Multi-Cloud Deployments. , 2017, CLOSER 2017.

[6]  Uwe Breitenbücher Eine musterbasierte Methode zur Automatisierung des Anwendungsmanagements , 2016 .

[7]  Frank Leymann,et al.  Integrating Compliance Requirements across Business and IT , 2014, 2014 IEEE 18th International Enterprise Distributed Object Computing Conference.

[8]  Ying Liu,et al.  A static compliance-checking framework for business process models , 2007, IBM Syst. J..

[9]  Madhurranjan Mohaan,et al.  Learning Ansible , 2014 .

[10]  Frank Leymann,et al.  Cloud Computing Patterns: Fundamentals to Design, Build, and Manage Cloud Applications , 2014 .

[11]  Archana Ganapathi,et al.  Why Do Internet Services Fail, and What Can Be Done About It? , 2002, USENIX Symposium on Internet Technologies and Systems.

[12]  Mario Vento,et al.  A (sub)graph isomorphism algorithm for matching large graphs , 2004, IEEE Transactions on Pattern Analysis and Machine Intelligence.

[13]  David Notkin,et al.  Software Reflexion Models: Bridging the Gap between Design and Implementation , 2001, IEEE Trans. Software Eng..

[14]  Dharini Balasubramaniam,et al.  Controlling software architecture erosion: A survey , 2012, J. Syst. Softw..

[15]  Salah Sadou,et al.  A family of languages for architecture constraint specification , 2010, J. Syst. Softw..

[16]  Schahram Dustdar,et al.  Compliance in service-oriented architectures: A model-driven and view-based approach , 2012, Inf. Softw. Technol..

[17]  Cheng Wu,et al.  BPSL Modeler - Visual Notation Language for Intuitive Business Property Reasoning , 2008, Electron. Notes Theor. Comput. Sci..

[18]  Oliver Kopp,et al.  Winery - A Modeling Tool for TOSCA-Based Cloud Applications , 2013, ICSOC.

[19]  Rainer Koschke,et al.  Hierarchical reflexion models , 2003, 10th Working Conference on Reverse Engineering, 2003. WCRE 2003. Proceedings..

[20]  Patrick Dohrmann,et al.  Rule-Based Architectural Compliance Checks for Enterprise Architecture Management , 2009, 2009 IEEE International Enterprise Distributed Object Computing Conference.

[21]  Michael Fellmann,et al.  State-of-the-art of Business Process Compliance Approaches: A Survey (Extended Abstract) , 2014, EMISA.

[22]  Oliver Kopp,et al.  OpenTOSCA - A Runtime for TOSCA-Based Cloud Applications , 2013, ICSOC.

[23]  Oliver Kopp,et al.  Integrated Cloud Application Provisioning: Interconnecting Service-Centric and Script-Centric Management Technologies , 2013, OTM Conferences.