Contract Compliance Monitoring of Web Services

Design and implementation via contractual specifications helps designers and programmers understand and analyze when the requirements have been elicited according to the client’ desires. In general, software is released when some tests have been successfully passed. However, these tests only cover a finite set of possible executions. But in systems such as web services, which involve a set of heterogeneous parties, it is difficult to identify an appropriate set of tests because their execution tends to be nondeterministic since most rely on underlying software systems where most of the information is hidden due to copyright or security concerns. In this work, we propose that the use of contract specifications, such us C-O Diagrams, allow one to specify and codify a system, where once the software has been released it is still possible to check if the execution conforms to a given contract. To achieve this goal, we purpose a monitoring technique, where all actions specified in a contract are recorded in a log that will be used by the monitor software to check if the contract is being fulfilled and alerting all parties when it is not so that the system can force reparations.

[1]  Enrique Martínez,et al.  WST: a tool supporting timed composite Web Services Model transformation , 2012, Simul..

[2]  Enrique Martínez,et al.  Specification and Verification of Normative Texts Using C-O Diagrams , 2014, IEEE Transactions on Software Engineering.

[3]  Enrique Martínez,et al.  Contractually Compliant Service Compositions , 2011, ICSOC.

[4]  Enrique Martínez,et al.  A Model for Visual Specification of E-contracts , 2010, 2010 IEEE International Conference on Services Computing.

[5]  C. A. Petri,et al.  Concurrency Theory , 1986, Advances in Petri Nets.

[6]  Shazia Wasim Sadiq,et al.  Compliance checking between business processes and business contracts , 2006, 2006 10th IEEE International Enterprise Distributed Object Computing Conference (EDOC'06).

[7]  Rajeev Alur,et al.  A Theory of Timed Automata , 1994, Theor. Comput. Sci..

[8]  Wang Yi,et al.  Uppaal in a nutshell , 1997, International Journal on Software Tools for Technology Transfer.

[9]  Anders P. Ravn,et al.  Classification of SOA Contract Specification Languages , 2008, 2008 IEEE International Conference on Web Services.

[10]  Jan Tretmans,et al.  Testing Concurrent Systems: A Formal Approach , 1999, CONCUR.

[11]  Kamalakar Karlapalem,et al.  From Contracts to E-Contracts: Modeling and Enactment , 2005, Inf. Technol. Manag..

[12]  Alessio Lomuscio,et al.  Towards Verifying Contract Regulated Service Composition , 2008, ICWS.

[13]  Hans Weigand,et al.  Modelling Communication between Cooperative Systems , 1995, CAiSE.

[14]  Olivera Marjanovic,et al.  Towards formal modeling of e-contracts , 2001, Proceedings Fifth IEEE International Enterprise Distributed Object Computing Conference.

[15]  Gregorio Díaz,et al.  Conformance Verification of Normative Specifications using C-O Diagrams , 2012, FLACOS.

[16]  Shing-Chi Cheung,et al.  A three-layer architecture for e-contract enforcement in an e-service environment , 2003, 36th Annual Hawaii International Conference on System Sciences, 2003. Proceedings of the.