Orchestration for Secure Multi-party Communications in Web-Services ✩

Abstract : Multi-party interactions in Web Service composition are hardly managed where parallel communications, while end-to-end security is respected, is difficult to be designed and verified. In this paper, we present an approach to handle and secure multi-party interactions in Web Service (WS) composition. A key ingredient of this methodology is to present the system composition at an abstract level as a component-based model where we verify and configure it securely. Then, we transform the model to generate secure orchestrator components that handle multi-party interactions. Afterwards, we generate accordingly BPEL processes where the security constrains are enforced as security WS-policies in the BPEL description of services. The framework we present is robust since founded on formal proves of the security properties. We validate this approach by securing a social network application called Whens App.
Type de document :
Pré-publication, Document de travail
2017
Liste complète des métadonnées

Littérature citée [46 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01629427
Contributeur : Najah Ben Said <>
Soumis le : lundi 6 novembre 2017 - 14:18:40
Dernière modification le : jeudi 15 novembre 2018 - 11:58:59

Fichier

main.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01629427, version 1

Citation

Najah Ben Said, Takoua Abdellatif, Marius Bozga, Saddek Ben Salem, Axel Legay. Orchestration for Secure Multi-party Communications in Web-Services ✩. 2017. 〈hal-01629427〉

Partager

Métriques

Consultations de la notice

467

Téléchargements de fichiers

97