• DocumentCode
    2837759
  • Title

    A Low-Cost Security Certification Scheme for Evolving Services

  • Author

    Anisetti, Marco ; Ardagna, Claudio A. ; Damiani, Ernesto

  • Author_Institution
    Dipt. di Tecnol. dell´´Inf., Univ. degli Studi di Milano Crema (CR), Crema, Italy
  • fYear
    2012
  • fDate
    24-29 June 2012
  • Firstpage
    122
  • Lastpage
    129
  • Abstract
    Security certification schemes for Service-Oriented Architecture (SOA) extend service specifications with the evidence that a service supports a set of security properties and provides a given level of assurance. However, services are subject to continuous refinements, and uncontrolled changes can easily invalidate existing certification results and require re-certification from scratch, with high costs and overheads on service providers. In this paper, we present an approach to manage the impact of service evolution on security certification. Our approach aims to support the incremental certification of evolving services and re-use, as much as possible, the certification evidence available from older certificates in the release of a new certificate.
  • Keywords
    formal specification; security of data; service-oriented architecture; software management; software reusability; SOA; low-cost security certification scheme; service evolution impact management; service specifications; service-oriented architecture; Adaptation models; Business; Secure storage; Security; Service oriented architecture; Evolving services; Model-based testing; SOA; Security certification;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Web Services (ICWS), 2012 IEEE 19th International Conference on
  • Conference_Location
    Honolulu, HI
  • Print_ISBN
    978-1-4673-2131-0
  • Type

    conf

  • DOI
    10.1109/ICWS.2012.53
  • Filename
    6257798
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2837759