Synthèse et compilation de services web sécurisés

Mohammed Anis Mekki 1
1 CASSIS - Combination of approaches to the security of infinite states systems
FEMTO-ST - Franche-Comté Électronique Mécanique, Thermique et Optique - Sciences et Technologies (UMR 6174), Inria Nancy - Grand Est, LORIA - FM - Department of Formal Methods
Abstract : Automatic composition of web services is a challenging task. Many works have considered simplified automata models that abstract away from the structure of messages exchanged by the services. For the domain of secured services (using e.g. digital signing or timestamping) we propose a novel approach to automated composition of services based on their security policies. Given a community of services and a goal service, we reduce the problem of composing the goal from services in the community to a security problem where an intruder should intercept and redirect messages from the service community and a client service till reaching a satisfying state. We have implemented the algorithm in Avantssar Platform and applied the tool to several case studies. Then we present a tool that compiles the obtained trace describing the execution of a the mediator into its corresponding runnable code. For that we first compute an executable specification as prudent as possible of her role in the orchestration. This specification is expressed in ASLan language, a formal language designed for modeling Web Services tied with security policies. Then we can check with automatic tools that this ASLan specification verifies some required security properties such as secrecy and authentication. If no flaw is found, we compile the specification into a Java servlet that can be used by the mediator to lead the orchestration.
Document type :
Theses
Complete list of metadatas

Cited literature [3 references]  Display  Hide  Download

https://hal.inria.fr/tel-01293742
Contributor : Michaël Rusinowitch <>
Submitted on : Friday, March 25, 2016 - 1:25:20 PM
Last modification on : Tuesday, December 18, 2018 - 4:38:25 PM
Long-term archiving on : Sunday, June 26, 2016 - 3:22:20 PM

Identifiers

  • HAL Id : tel-01293742, version 1

Citation

Mohammed Anis Mekki. Synthèse et compilation de services web sécurisés . Informatique [cs]. Universite de Lorraine, 2011. Français. ⟨tel-01293742⟩

Share

Metrics

Record views

330

Files downloads

98