Pre-execution security policy assessment of remotely defined BPEL-based grid processes

Authors:
Klaus-Peter Fischer;Udo Bleimann;Steven Furnell
Affiliations:
Digamma Communications Consulting GmbH, Mühltal, Germany and Aida Institute of Applied Informatics Darmstadt, University of Applied Sciences Darmstadt, Darmstadt, Germany and University of Pl ...;Aida Institute of Applied Informatics Darmstadt, University of Applied Sciences Darmstadt, Darmstadt, Germany;University of Plymouth, Plymouth, United Kingdom
Venue:
TrustBus'07 Proceedings of the 4th international conference on Trust, Privacy and Security in Digital Business
Year:
2007

Citing 17
Cited 0

The Grid: an application of the semantic web

ACM SIGMOD Record
Business-to-business interactions: issues and enabling technologies

The VLDB Journal — The International Journal on Very Large Data Bases
Security for Grid Services

HPDC '03 Proceedings of the 12th IEEE International Symposium on High Performance Distributed Computing
Empowering mobile code using expressive security policies

Proceedings of the 2002 workshop on New security paradigms
Model-carrying code: a practical approach for safe execution of untrusted applications

SOSP '03 Proceedings of the nineteenth ACM symposium on Operating systems principles
Towards a flexible security framework for peer-to-peer based grid computing

MGC '04 Proceedings of the 2nd workshop on Middleware for grid computing
Downgrading policies and relaxed noninterference

Proceedings of the 32nd ACM SIGPLAN-SIGACT symposium on Principles of programming languages
The BPEL Orchestrating Framework for Secured Grid Services

ITCC '05 Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'05) - Volume I - Volume 01
Security policy in a declarative style

PPDP '05 Proceedings of the 7th ACM SIGPLAN international conference on Principles and practice of declarative programming
The Anatomy of the Grid: Enabling Scalable Virtual Organizations

International Journal of High Performance Computing Applications
OWL-WS: A Workflow Ontology for Dynamic Grid Service Composition

E-SCIENCE '05 Proceedings of the First International Conference on e-Science and Grid Computing
On Building Parallel & Grid Applications: Component Technology and Distributed Services

Cluster Computing
Introduction of semantic matchmaking to Grid computing

Journal of Parallel and Distributed Computing
A Model for Semantic Annotation and Publication of Meteorology Grid Services in SMGA

GCCW '06 Proceedings of the Fifth International Conference on Grid and Cooperative Computing Workshops
Providing secure coordinated access to grid services

Proceedings of the 4th international workshop on Middleware for grid computing
Security Policy Enforcement in BPEL-Defined Collaborative Business Processes

ICDEW '07 Proceedings of the 2007 IEEE 23rd International Conference on Data Engineering Workshop
Language-based information-flow security

IEEE Journal on Selected Areas in Communications

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper results from research on security policy enforcement for cross-domain defined business processes specified in BPEL are transferred to the field of Grid computing, where BPEL is used to define Grid processes. In order to facilitate the assessment of remotely defined BPEL-based Grid processes for compliance with security policies prior to execution, a method for specifying security policies with respect to security-relevant semantic patterns in BPEL is applied. The paper shows the extent to which transfer of the former results was successful and indicates limitations and areas of further research. Where the situation is similar to cooperative business processes, such as in forming dynamic virtual organizations using Grid technology, the results turned out to be transferable with minor modifications, whereas for a transfer to the Grid context in general further investigation is required (in particular with respect to formal specification of security-relevant semantics of Grid services).