论文信息 - Trading Off Security in a Service Oriented Architecture

Trading Off Security in a Service Oriented Architecture

Service oriented architectures provide a simple yet flexible model of a computing system as a graph of services making requests and providing results to each other. In this paper we define a formal model of a service oriented architecture and using it, we define metrics for performance, for availability, and for various security properties. These metrics serve as the basis for expressing the business requirements. To make trade-offs possible we also define a set of cost metrics, denominated in a uniform currency, to measure the cost of not meeting a requirement. The model, the property metrics, and the cost metrics are then used to generate a Constraint Satisfaction Problem where the objective function is set to minimize the aggregate system cost. We have written these constraints and defined realistic requirements in OPL and we have used them to generate system configurations that minimize the overall cost by optimally trading off the business requirements.

[1] Paul Murray,et al. SmartFrog: Configuration and Automatic Ignition of Distributed Applications , 2003 .

[2] Arif Merchant,et al. Minerva: An automated resource provisioning tool for large-scale storage systems , 2001, TOCS.

[3] Benjamin Aziz,et al. Configuring Storage Area Networks for Mandatory Security , 2004, DBSec.

[4] Julie Ward,et al. Appia: Automatic Storage Area Network Fabric Design , 2002, FAST.

[5] Antonio Ruiz Cortés,et al. Automating the Procurement of Web Services , 2003, ICSOC.

[6] Eric Anderson,et al. Proceedings of the Fast 2002 Conference on File and Storage Technologies Hippodrome: Running Circles around Storage Administration , 2022 .

[7] Ewa Orlowska,et al. Service-Oriented Computing - ICSOC 2003 , 2003, Lecture Notes in Computer Science.

[8] Omer F. Rana,et al. QoS Adaptation in Service-Oriented Grids , 2003, Middleware Workshops.

[9] Klara Nahrstedt,et al. An overview of quality of service routing for next-generation high-speed networks: problems and solutions , 1998, IEEE Netw..

[10] Rob van Glabbeek,et al. Handbook of Process Algebra , 2001 .

[11] Omer F. Rana,et al. An approach for quality of service adaptation in service‐oriented Grids , 2004, Concurr. Pract. Exp..

[12] J. Bergstra,et al. Handbook of Process Algebra , 2001 .