Towards a framework of authentication and authorization patterns for ensuring availability in service composition

Securing availability of applications and services is increasingly important for provisioning services in today´s and future networks and systems. For fulfilling user expectations, availability depends more and more on the characteristics and requirements of the services themselves and the different requirements of certain users. In order to address service availability, we see availability as a composite notion consisting of the ability to ensure access for authorized users only, and the property of being on hand and useable when needed. Service composition is an approach to incremental service development contributing to rapid service design and development. This paper presents a set of authentication and authorization patterns addressing the aspect of ensuring access to authorized users only in service composition. We provide a framework and classification of these patterns, and we demonstrate how the patterns can be composed with services using a policy-driven approach.