A SLA evaluation methodology in Service Oriented Architectures
作者: Valentina Casola , Antonino Mazzeo , Nicola Mazzocca , Massimiliano Rak
DOI: 10.1007/978-0-387-36584-8_10
关键词:
摘要: Cooperative services in Service Oriented Architectures (SOA) inter act and delegate jobs to each other; when they have respect a Level Agreement (SLA) need explicitly manage it amongst other. SLAs and, above all, security-SLAs, are usually expressed ambiguous ways this implies that be manually evaluated both mutual agreement ”qualify service” the monitoring process. Due approach, usually, service composition cannot dynamically performed. In paper we introduce methodology which helps security SLA automatic evaluation comparison. The founds on adoption of policies for behav ior description definition metric function comparison policies. We will illustrate applicability proposed different contexts great interest e-government projects.
springer.com
springerlink.com参考文章(12)
Bret Hartman, Donald J Flinn, Konstantin Beznosov, Shirley Kawamoto, Mastering Web Services Security ,(2003)
Matt Bishop, Computer Security: Art and Science ,(2002)
V. Casola, A. Mazzeo, N. Mazzocca, V. Vittorini, Policy formalization to combine separate systems into larger connected network of trust net-Con '02 Proceedings of the IFIP TC6 / WG6.2 & WG6.7 Conference on Network Control and Engineering for QoS, Security and Mobility. pp. 425- 430 ,(2002) , 10.1007/978-0-387-35620-4_37
A. Bosworth, Developing Web services international conference on data engineering. pp. 477- 481 ,(2001) , 10.1109/ICDE.2001.914861
S.A. Kokolakis, E.A. Kiountouzis, Achieving Interoperability in a Multiple-Security- Policies Environment Computers & Security. ,vol. 19, pp. 267- 281 ,(2000) , 10.1016/S0167-4048(00)88615-0
T Klobučar, B Jerman-Blažič, A formalisation and evaluation of certificate policies Computer Communications. ,vol. 22, pp. 1104- 1110 ,(1999) , 10.1016/S0140-3664(99)00082-1
Ronda R. Henning, Security service level agreements: quantifiable security for the enterprise? new security paradigms workshop. pp. 54- 60 ,(1999) , 10.1145/335169.335194
Valentina Casola, Luigi Troiano, Massimiliano Rak, Rosa Preziosi, A reference model for security level evaluation: Policy and fuzzy techniques Journal of Universal Computer Science. ,vol. 11, pp. 150- 174 ,(2005)
V. Casola, M. Rak, R. Preziosi, L. Troiano, Security level evaluation: policy and fuzzy techniques international conference on information technology coding and computing. ,vol. 2, pp. 752- 756 ,(2004) , 10.1109/ITCC.2004.1286747
S. Jajodia, P. Samarati, V.S. Subrahmanian, A logical language for expressing authorizations ieee symposium on security and privacy. pp. 31- 42 ,(1997) , 10.1109/SECPRI.1997.601312