Formal refinement patterns for goal-driven requirements elaboration
SIGSOFT '96 Proceedings of the 4th ACM SIGSOFT symposium on Foundations of software engineering
Pattern-oriented software architecture: a system of patterns
Pattern-oriented software architecture: a system of patterns
UMLsec: Extending UML for Secure Systems Development
UML '02 Proceedings of the 5th International Conference on The Unified Modeling Language
Security Engineering with Patterns: Origins, Theoretical Models, and New Applications
Security Engineering with Patterns: Origins, Theoretical Models, and New Applications
A Goal-based Approach to Policy Refinement
POLICY '04 Proceedings of the Fifth IEEE International Workshop on Policies for Distributed Systems and Networks
An advisor for web services security policies
Proceedings of the 2005 workshop on Secure web services
Axis2, Middleware for Next Generation Web Services
ICWS '06 Proceedings of the IEEE International Conference on Web Services
Patterns for Automated Management of Security and Dependability Solutions
DEXA '07 Proceedings of the 18th International Conference on Database and Expert Systems Applications
SERENITY Pattern-Based Software Development Life-Cycle
DEXA '08 Proceedings of the 2008 19th International Conference on Database and Expert Systems Application
Contract-based cloud architecture
CloudDB '10 Proceedings of the second international workshop on Cloud data management
Hi-index | 0.00 |
Service-oriented Architectures (SOA) provide a flexible infrastructure to allow independently developed software components to communicate in a seamless manner. Increased connectivity entails significant higher security risks. To face these risks, a broad range of specifications e.g. WS-Security and WS-Trust has emerged to ensure security in SOA. These specifications are supported by all major Web Service Frameworks and enforced by security modules provided by these frameworks to apply security to ingoing and outgoing messages. In general, a security module is configured declaratively using a security policy e.g. WS-SecurityPolicy that expresses security goals and related configurations. To support a broad range of use cases, these security policy languages offer a variety of settings and options. However, the complexity of security policy languages leads to an error-prone and tedious creation of security policies. To simplify and support the generation of Web Services, we present an architecture for a security advisor in this paper. This security advisor facilitates the configuration of security modules for service-based systems based on a pattern-driven approach that enables the transformation from general security goals to concrete security configurations. Therefore, we will introduce a security pattern system which is used to resolve concrete protocols and security mechanisms at a technical level.