Distributed Information Flow Verification Framework for the Composition of Service Chain in Wireless Sensor Network

Dynamic service composition provides us with a promising approach to cooperate different sensor nodes in WSN to build complex applications based on their basic functions. Usually multiple nodes located in different regions provide data with different security levels, and it is critical to ensure the security of the information flow in the composite services. However, the energy-limited nature of sensor nodes in WSN poses a significant challenge for the centralized information flow verification with which the verification node needs to consume lots of computation and network resources. In this paper, we specify the security constraints for each service participant to secure the information flow in a service chain based in the lattice model and then present a distributed verification framework that cooperates different service participants to verify their information flow policies distributively. The evaluation results show a significant decrease on the verification cost of the single verification node, which provides a better load balance in each sensor node.

[1]  Abdelmounaam Rezgui,et al.  Service-Oriented Sensor-Actuator Networks , 2007 .

[2]  Elisa Bertino,et al.  Policy-Driven Service Composition with Information Flow Control , 2010, 2010 IEEE International Conference on Web Services.

[3]  Elisa Bertino,et al.  A Trust-Based Context-Aware Access Control Model for Web-Services , 2004, Proceedings. IEEE International Conference on Web Services, 2004..

[4]  Luiz A. DaSilva,et al.  A service-centric model for wireless sensor networks , 2005, IEEE Journal on Selected Areas in Communications.

[5]  Bhavani M. Thuraisingham,et al.  Rule-Based Run-Time Information Flow Control in Service Cloud , 2011, 2011 IEEE International Conference on Web Services.

[6]  Gregor Snelting,et al.  Efficient path conditions in dependence graphs for software safety analysis , 2006, TSEM.

[7]  Rafael Accorsi,et al.  Static Information Flow Analysis of Workflow Models , 2010, ISSS/BPSC.

[8]  Takoua Abdellatif,et al.  SEWSEC: A Secure Web Service Composer using Information Flow Control , 2011, 2011 6th International Conference on Risks and Security of Internet and Systems (CRiSIS).

[9]  Mohamed Eltoweissy,et al.  Ad Hoc and Sensor Networks , 2005 .

[10]  Elisa Bertino,et al.  A fine-grained access control model for Web services , 2004, IEEE International Conference onServices Computing, 2004. (SCC 2004). Proceedings. 2004.

[11]  Melanie Volkamer,et al.  Information Flow Control to Secure Dynamic Web Service Composition , 2006, SPC.

[12]  Elisa Bertino,et al.  An access control system for a Web map management service , 2004, 14th International Workshop Research Issues on Data Engineering: Web Services for e-Commerce and e-Government Applications, 2004. Proceedings..

[13]  Elisa Bertino,et al.  The SCIFC Model for Information Flow Control in Web Service Composition , 2009, 2009 IEEE International Conference on Web Services.

[14]  Claude Godart,et al.  Information Flow Control with Decentralized Service Compositions , 2007, IEEE International Conference on Web Services (ICWS 2007).

[15]  Dorothy E. Denning,et al.  A lattice model of secure information flow , 1976, CACM.

[16]  Joe D. Warren,et al.  The program dependence graph and its use in optimization , 1987, TOPL.