[ PDF |
BibTeX |
EndNote |
RIS |
Word ]
Service Compositions: Curse or Blessing for Security?
By Achim D. Brucker.
Building large systems by composing reusable services is not a new idea, it is at least 25 years old. Still, only recently the scenario of dynamic interchangeable services that are consumed via public networks is becoming reality. Following the Software as a Service (Saas) paradigm, an increasing number of complex applications is offered as a service that themselves can be used composed for building even larger and more complex applications. This will lead to situations in which users are likely to unknowingly consume services in a dynamic and ad hoc manner.
Leaving the rather static (and mostly on-premise) service composition scenarios of the past 25 years behind us, dynamic service compositions, have not only the potential to transform the software industry from a business perspective, they also requires new approaches for addressing the security, trustworthiness needs of users.
The EU FP7 project Aniketos develops new technology, methods, tools and security services that support the design-time creation and run-time dynamic behaviour of dynamic service compositions, addressing service developers, service providers and service end users.
In this talk, we will motivate several security and trustworthiness requirements that occur in dynamic service compositions and discuss the solutions developed within the project Aniketos. Based on our experiences, we will discuss open research challenges and potential opportunities for potential opportunities for applying type systems.
Please cite this work as follows: A. D. Brucker, “Service compositions: Curse or blessing for security?” presented at the International workshop on behavioural types (BEAT), Madrid, Spain, Sep. 24, 2013. Invited Keynote.. Author copy: http://logicalhacking.com/publications/talk-brucker.ea-service-composition-2013/
BibTeX
@Unpublished{ talk:brucker.ea:service-composition:2013,
date = {2013-09-24},
title = {Service Compositions: Curse or Blessing for Security?},
language = {USenglish},
venue = {Madrid, Spain},
author = {Achim D. Brucker},
eventtitle = {International Workshop on Behavioural Types (BEAT)},
slideshare = {key/pMmeJz6qeWyMIR},
slideshare_width = {595},
slideshare_height = {485},
abstract = {Building large systems by composing reusable services is not
a new idea, it is at least 25 years old. Still, only recently
the scenario of dynamic interchangeable services that are
consumed via public networks is becoming reality. Following
the \emph{Software as a Service} (Saas) paradigm, an
increasing number of complex applications is offered as a
service that themselves can be used composed for building even
larger and more complex applications. This will lead to
situations in which users are likely to unknowingly consume
services in a dynamic and ad hoc manner.
Leaving the rather static (and mostly on-premise) service
composition scenarios of the past 25 years behind us, dynamic
service compositions, have not only the potential to transform
the software industry from a business perspective, they also
requires new approaches for addressing the security,
trustworthiness needs of users.
The EU FP7 project Aniketos develops new technology, methods,
tools and security services that support the design-time
creation and run-time dynamic behaviour of dynamic service
compositions, addressing service developers, service providers
and service end users.
In this talk, we will motivate several security and
trustworthiness requirements that occur in dynamic service
compositions and discuss the solutions developed within the
project Aniketos. Based on our experiences, we will discuss
open research challenges and potential opportunities for
potential opportunities for applying type systems.},
note = {Invited Keynote..
Author copy: \url{http://logicalhacking.com/publications/talk-brucker.ea-service-composition-2013/}},
}