DocumentCode :
2992300
Title :
A Survey of Security Concepts for Common Operating Environments
Author :
Loyall, Joseph ; Rohloff, Kurt ; Pal, Partha ; Atighetchi, Michael
Author_Institution :
Raytheon BBN Technol., Cambridge, MA, USA
fYear :
2011
fDate :
28-31 March 2011
Firstpage :
244
Lastpage :
253
Abstract :
As newer software engineering technologies, such as Service-Oriented Architecture (SOA), become the basis for mission-critical systems, they must include security as a foundational capability. This paper highlights security concepts relevant to using SOA as a foundation for a Common Operating Environment (COE), i.e., a set of infrastructure and common services for developing and executing applications across multiple platforms. We present and motivate security needs, tradeoffs, and solutions in the various layers of a SOA-based COE, including 1) the network, 2) computational platforms, and 3) the common software infrastructure consisting of a SOA stack, common services, and applications. We also discuss cross cutting aspects of security such as survivability, transparency, flexibility, specificity, reuse, and assurance. We then explore security standards and requirements for mission-critical systems developed on top of a SOA-based COE and security technologies that are candidates for satisfying the requirements. The paper closes with a set of recommendations and steps forward for both research into and implementation of security in a SOA-based COE.
Keywords :
safety-critical software; security of data; service-oriented architecture; SOA stack; SOA-based COE; common operating environment; computational platform; flexibility; mission-critical system; security concept; security needs; security requirement; security standard; security technology; service-oriented architecture; software engineering technology; software infrastructure; survivability; transparency; Access control; Authentication; Computers; Kernel; Service oriented architecture; Adaptive Survivability; Cross Domain; Multi-Level Security; Service-Oriented Architecture;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Object/Component/Service-Oriented Real-Time Distributed Computing Workshops (ISORCW), 2011 14th IEEE International Symposium on
Conference_Location :
Newport Beach, CA
Print_ISBN :
978-1-4577-0303-4
Electronic_ISBN :
978-0-7695-4377-2
Type :
conf
DOI :
10.1109/ISORCW.2011.31
Filename :
5753534
Link To Document :
بازگشت