Evolving Security Requirements in Multi-layered Service-Oriented-Architectures

Due to today's rapidly changing corporate environments, business processes are increasingly subject to dynamic configuration and evolution. The evolution of new deployment architectures, as illustrated by the move towards mobile platforms and the Internet Of Services, and the introduction of new security regulations (imposed by national and international regulatory bodies, such as SOX or BASEL) are an important constraint in the design and development of business processes. In such a context, it is not sufficient to apply the corresponding adaptations only at the service orchestration or at the choreography level; there is also the need for controlling the impact of new security requirements to several architectural layers, specially in cloud computing, where the notion of Platforms as Services and Infrastructure as Services are fundamental. In this paper we survey several research questions related to security cross-domain and cross-layer security functionality in Service Oriented Architectures, from an original point of view. We provide the first insights on how a general service model empowered with aspect oriented programming capabilities can provide clean modularization to such cross-cutting security concerns.

[1]  E. Bagheri A Service Oriented Approach to Critical Infrastructure Modeling , .

[2]  Qiu Chen,et al.  Building a Collaborative Manufacturing System on an Extensible SOA-based Platform , 2006, 2006 10th International Conference on Computer Supported Cooperative Work in Design.

[3]  Wouter Joosen,et al.  True and Transparent Distributed Composition of Aspect-Components , 2006, Middleware.

[4]  Gregor Kiczales,et al.  Aspect-oriented programming , 2001, ESEC/FSE-9.

[5]  Thomas Ledoux,et al.  Aspect-Oriented Software Development , 2003 .

[6]  Lutz Lowis,et al.  On a Classification Approach for SOA Vulnerabilities , 2009, 2009 33rd Annual IEEE International Computer Software and Applications Conference.

[7]  Refik Molva,et al.  Towards secure and trusted collaboration environment for European public sector , 2007, 2007 International Conference on Collaborative Computing: Networking, Applications and Worksharing (CollaborateCom 2007).

[8]  Dirk Fox,et al.  Open Web Application Security Project , 2006, Datenschutz und Datensicherheit - DuD.

[9]  G.A. Lewis,et al.  Service-Oriented Architecture and its implications for software maintenance and evolution , 2008, 2008 Frontiers of Software Maintenance.

[10]  Mira Mezini,et al.  AO4BPEL: An Aspect-oriented Extension to BPEL , 2007, World Wide Web.

[11]  Zahir Tari,et al.  On the Move to Meaningful Internet Systems 2006: CoopIS, DOA, GADA, and ODBASE, OTM Confederated International Conferences, CoopIS, DOA, GADA, and ODBASE 2006, Montpellier, France, October 29 - November 3, 2006. Proceedings, Part I , 2006, OTM Conferences.

[12]  Luis Daniel Benavides Navarro,et al.  Modularization of Distributed Web Services Using Aspects with Explicit Distribution (AWED) , 2006, OTM Conferences.

[13]  Anthony Finkelstein,et al.  Weaving aspects into Web service orchestrations , 2005, IEEE International Conference on Web Services (ICWS'05).

[14]  Lutz Lowis,et al.  Vulnerability Analysis in SOA-Based Business Processes , 2011, IEEE Transactions on Services Computing.

[15]  Zhao Mingyan,et al.  Service-Oriented Dynamic Evolution Model , 2008, 2008 International Symposium on Computational Intelligence and Design.

[16]  P. Cochat,et al.  Et al , 2008, Archives de pediatrie : organe officiel de la Societe francaise de pediatrie.