Metric-Aware Secure Service Orchestration

Gabriele Costa
(Dipartimento di Informatica, Sistemistica e Telematica Universita di Genova)
Fabio Martinelli
(Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche)
Artsiom Yautsiukhin
(Istituto di Informatica e Telematica, Consiglio Nazionale delle Ricerche)

Secure orchestration is an important concern in the internet of service. Next to providing the required functionality the composite services must also provide a reasonable level of security in order to protect sensitive data. Thus, the orchestrator has a need to check whether the complex service is able to satisfy certain properties. Some properties are expressed with metrics for precise definition of requirements. Thus, the problem is to analyse the values of metrics for a complex business process.

In this paper we extend our previous work on analysis of secure orchestration with quantifiable properties. We show how to define, verify and enforce quantitative security requirements in one framework with other security properties. The proposed approach should help to select the most suitable service architecture and guarantee fulfilment of the declared security requirements.

In Marco Carbone, Ivan Lanese, Alexandra Silva and Ana Sokolova: Proceedings Fifth Interaction and Concurrency Experience (ICE 2012), Stockholm, Sweden, 16th June 2012, Electronic Proceedings in Theoretical Computer Science 104, pp. 32–46.
Published: 14th December 2012.

ArXived at: https://dx.doi.org/10.4204/EPTCS.104.4 bibtex PDF
References in reconstructed bibtex, XML and HTML format (approximated).
Comments and questions to: eptcs@eptcs.org
For website issues: webmaster@eptcs.org