The service Security Lab: A model-driven platform to compose and explore service security in the cloud

Proceedings - 2010 6th World Congress on Services, Services-1 2010

Volumn , Issue , 2010, Pages 115-122

  Menzel, Michael ^a   Warschofsky, Robert ^a   Thomas, Ivonne ^a   Willems, Christian ^a   Meinel, Christoph ^a  

^a UNIVERSITY OF POTSDAM   (Germany)

Author keywords

[No Author keywords available]

Indexed keywords

CLOUD COMPUTING; IDENTITY AND ACCESS MANAGEMENTS; INFORMATION PROTECTION; MODEL DRIVEN APPROACH; MODEL-DRIVEN; MONITORING AND ANALYSIS; SECURITY MECHANISM; SECURITY POLICY; SECURITY REQUIREMENTS; SECURITY RISKS; SERVICE SECURITY; TRANSFORMATION BASED;

GRID COMPUTING; INFORMATION SERVICES; INTERNET PROTOCOLS; SECURITY SYSTEMS; WEB SERVICES;

NETWORK SECURITY;

EID: 78049341379     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SERVICES.2010.90     Document Type: Conference Paper

References (17)

1. W. Dawoud, I. Takouna, and C. Meinel, "Infrastructure as a Service Security: Challenges and Solutions, " Proceedings of the 7th IEEE International Conference on Informatics and Systems, p. 8, March 2010.
2. M. Jensen, J. Schwenk, N. Gruschka, and L. L. Iacono, "On technical security issues in cloud computing, " Cloud Computing, IEEE International Conference on, vol. 0, pp. 109-116, 2009.
3. D. Basin, J. Doser, and T. Lodderstedt, "Model driven security: from uml models to access control infrastructures, " ACM Transactions on Software Engineering and Methodology, vol. 15, no. 1, pp. 39-91, January 2006.
4. OASIS, "Identity Metasystem Interoperability Version 1.0, " OASIS Standard, July 2009. [Online]. Available: "http://docs.oasis-open. org/imi/identity/v1.0/identity.html".
5. M. Menzel, R. Warschofsky, and C. Meinel, "A Patterndriven Generation of Security Policies for Serviceoriented Architectures, " in IEEE International Conference on Web Services (ICWS 2010), 2010.
6. M. Menzel and C. Meinel, "SecureSOA - Modelling Security Requirements for Service-oriented Architectures, " in IEEE International Conference on Services Computing (SCC 2010), 2010.
7. C. Alexander, S. Ishikawa, M. Silverstein, M. Jacobsen, I. Fiksdahl-King, and S. Angel, A Pattern Lanuage: Towns - Buildings - Construction. Oxford University Press, 1977.
8. G. Della-Libera, M. Gudgin, and et all, "Web services security policy language (ws-securitypolicy), " Public Draft Specification, Juli 2005.
9. C. Willems and C. Meinel, "Tele-lab it-security: an architecture for an online virtual it security lab, " International Journal of Online Engineering (iJOE), vol. 4, 2008.
10. G. Decker, H. Overdick, and M.Weske, "Oryx - an open modeling platform for the bpm community, " in BPM, 2008, pp. 382-385.
11. A. Rodríguez, E. Fernández-Medina, and M. Piattini, "A bpmn extension for the modeling of security requirements in business processes, " IEICE Transactions, vol. 90-D, no. 4, pp. 745-752, 2007.
12. C. Wolter and A. Schaad, "Modeling of task-based authorization constraints in bpmn, " in BPM, 2007, pp. 64- 79.
13. M. Hafner and R. Breu, Security Engineering for Service-oriented Architectures. Springer, October 2008.
14. M. Jensen and S. Feja, "A security modeling approach for web-service-based business processes, " Engineering of Computer-Based Systems, IEEE International Conference on the, vol. 0, pp. 340-347, 2009.
15. J. Juerjens, "UMLsec: Extending UML for Secure Systems Development, " in UML '02: Proceedings of the 5th International Conference on The Unified Modeling Language, 2002, pp. 412-425.
16. F. Satoh and Y. Yamaguchi, "Generic security policy transformation framework for ws-security, " in IEEE International Conference on Web Services (ICWS 2007). Los Alamitos, CA, USA: IEEE Computer Society, 2007, pp. 513-520.
17. N. A. Delessy, "A pattern-driven process for secure service-oriented applications, " Ph.D. dissertation, Florida Atlantic University, Boca Raton, Florida, May 2008.