An architecture for certification-aware service discovery

Service-orientation is an emerging paradigm for building complex systems based on loosely coupled components, deployed and consumed over the network. Despite the original intent of the paradigm, its current instantiations are limited to a single trust domain (e.g., a single organization) One of the main reasons for this is the trust gap that normally arises when software services, offered by previously unknown providers, are to be selected at run-time, without any human intervention. The idea of machine-readable security certificates (called asserts) paves the way to automated reasoning about security properties of services. Similarly to current security certification schemes, the assessment of the security properties of a service is delegated to an independent third party (certification authority), who issues a corresponding assert, bound to the service. Building on the assert concept, this paper describes our proposal for a modular architecture to realise a certification-aware service discovery framework. The architecture supports the discovery of single services based on certified security properties, as well as the dynamic synthesis of service compositions that satisfy the required security properties.

[1]  Lionel M. Ni,et al.  Splendor: A secure, private, and location-aware service discovery protocol supporting mobile services , 2003, Proceedings of the First IEEE International Conference on Pervasive Computing and Communications, 2003. (PerCom 2003)..

[2]  Jianwen Su,et al.  Web service discovery based on behavior signatures , 2005, 2005 IEEE International Conference on Services Computing (SCC'05) Vol-1.

[3]  Anupam Joshi,et al.  A Secure Infrastructure for Service Discovery and Access in Pervasive Computing , 2003, Mob. Networks Appl..

[4]  Eleni Stroulia,et al.  Examining Usage Protocols for Service Discovery , 2006, ICSOC.

[5]  Gian Luigi Ferrari,et al.  Enforcing secure service composition , 2005, 18th IEEE Computer Security Foundations Workshop (CSFW'05).

[6]  Nikos Loutas,et al.  A System Architecture for Context-Aware Service Discovery , 2005, CWS@CONTEXT.

[7]  Ben Y. Zhao,et al.  An architecture for a secure service discovery service , 1999, MobiCom.

[8]  Andrea Zisman,et al.  A Service Discovery Framework based on Linear Composition , 2007, IEEE International Conference on Services Computing (SCC 2007).

[9]  Barbara Carminati,et al.  Security Conscious Web Service Composition with Semantic Web Support , 2007, 2007 IEEE 23rd International Conference on Data Engineering Workshop.

[10]  Kunal Verma,et al.  Constraint driven Web service composition in METEOR-S , 2004, IEEE International Conference onServices Computing, 2004. (SCC 2004). Proceedings. 2004.

[11]  Dieter Fensel,et al.  Automatic Location of Services , 2005, ESWC.

[12]  Gerhard Fischer,et al.  Context-aware browsing of large component repositories , 2001, Proceedings 16th Annual International Conference on Automated Software Engineering (ASE 2001).

[13]  Ernesto Damiani,et al.  Advanced Security Service cERTificate for SOA: Certified Services go Digital , 2010, ISSE.

[14]  Roberto Chinnici,et al.  Web Services Description Language (WSDL) Version 2.0 Part 1: Core Language , 2007 .

[15]  Stephan Flake,et al.  Towards Context-Aware Service Discovery : A Case Study for a new Advice of Charge Service , 2005 .

[16]  Hanan Lutfiyya,et al.  Context-aware service selection based on dynamic and static service attributes , 2005, WiMob'2005), IEEE International Conference on Wireless And Mobile Computing, Networking And Communications, 2005..

[17]  Matthias Klusch,et al.  Automated semantic web service discovery with OWLS-MX , 2006, AAMAS '06.

[18]  Ian Horrocks,et al.  A software framework for matchmaking based on semantic web technology , 2003, WWW '03.

[19]  Daniela Grigori,et al.  Behavioral matchmaking for service retrieval , 2006, 2006 IEEE International Conference on Web Services (ICWS'06).

[20]  Lionel M. Ni,et al.  A private, secure, and user-centric information exposure model for service discovery protocols , 2006, IEEE Transactions on Mobile Computing.

[21]  Barbara Carminati,et al.  Security Conscious Web Service Composition , 2006, 2006 IEEE International Conference on Web Services (ICWS'06).

[22]  Jean Jacques Moreau,et al.  SOAP Version 1. 2 Part 1: Messaging Framework , 2003 .

[23]  James Dooley,et al.  A Framework for Dynamic Service Discovery , 2008, 2008 23rd IEEE/ACM International Conference on Automated Software Engineering.

[24]  Slim Trabelsi,et al.  Secure Web Service Discovery: Overcoming Challenges of Ubiquitous Computing , 2006, 2006 European Conference on Web Services (ECOWS'06).

[25]  Andrew Tokmakoff,et al.  Ontology-Based Context-Aware Service Discovery for Pervasive Environments , 2006 .