Improving Trust in Composite eServices Via Run-Time Participants Testing

The Service Oriented Architecture paradigm promises to open and integrate Public Administration offices in order to provide high-value e-services to citizens. Nevertheless to foster real usage of e-services by citizens, in majority still not fully acquainted with Internet technologies, it is necessary to put in place mechanisms to reduce as much as possible perceived system misbehavior. e-Services often handle personal and sensible data, therefore trust on the behavior of the system becomes of primary importance. In this paper, focusing on run-time composition of e-services, we provide an approach that reduces the possibility that the system will fail as consequence of interoperability issues among run-time discovered services, and after that sensible data have been provided by the citizen. The approach uses run-time testing to assess interoperability between services, and model-checking based techniques to reduce the number of test-cases to be applied. An exemplificative case-study is also illustrated and discussed.

[1]  C. Peltz,et al.  Web Services Orchestration and Choreography , 2003, Computer.

[2]  Paul Ammann,et al.  Using model checking to generate tests from specifications , 1998, Proceedings Second International Conference on Formal Engineering Methods (Cat.No.98EX241).

[3]  Sebastián Uchitel,et al.  Model-based verification of Web service compositions , 2003, 18th IEEE International Conference on Automated Software Engineering, 2003. Proceedings..

[4]  Carlo Ghezzi,et al.  A Model Checking Approach to Verify BPEL4WS Workflows , 2007, IEEE International Conference on Service-Oriented Computing and Applications (SOCA '07).

[5]  Matthew B. Dwyer,et al.  Bogor: an extensible and highly-modular software model checking framework , 2003, ESEC/FSE-11.

[6]  Jia Zhang,et al.  Trustworthy Web services: actions for now , 2005, IT Professional.

[7]  Matjaz B. Juric,et al.  Business process execution language for web services , 2004 .

[8]  Sarfraz Khurshid,et al.  Exploring very large state spaces using genetic algorithms , 2004, International Journal on Software Tools for Technology Transfer.

[9]  Mark O'Neill,et al.  Web Services Security , 2003 .

[10]  E. Allen Emerson,et al.  Temporal and Modal Logic , 1991, Handbook of Theoretical Computer Science, Volume B: Formal Models and Sematics.

[11]  Gustavo Alonso,et al.  Web Services: Concepts, Architectures and Applications , 2009 .

[12]  Phillip Hallam-Baker,et al.  Web services security: soap message security , 2003 .

[13]  Sanjiva Weerawarana,et al.  Unraveling the Web services web: an introduction to SOAP, WSDL, and UDDI , 2002, IEEE Internet Computing.

[14]  Raymond A. Paul,et al.  Automated model checking and testing for composite Web services , 2005, Eighth IEEE International Symposium on Object-Oriented Real-Time Distributed Computing (ISORC'05).

[15]  John H. Holland,et al.  Adaptation in Natural and Artificial Systems: An Introductory Analysis with Applications to Biology, Control, and Artificial Intelligence , 1992 .

[16]  Stephan Merz,et al.  Model Checking , 2000 .

[17]  Mauro Pezzè,et al.  Software testing and analysis - process, principles and techniques , 2007 .

[18]  John H. Holland,et al.  Adaptation in Natural and Artificial Systems: An Introductory Analysis with Applications to Biology, Control, and Artificial Intelligence , 1992 .

[19]  Tony Andrews Business Process Execution Language for Web Services Version 1.1 , 2003 .