article

Tisa: Toward Trustworthy Services in a Service-Oriented Architecture

Authors:

Hridesh Rajan,

Mahantesh HosamaniAuthors Info & Claims

IEEE Transactions on Services Computing, Volume 1, Issue 4

Pages 201 - 213

https://doi.org/10.1109/TSC.2008.18

Published: 01 October 2008 Publication History

Publisher Site

Abstract

Verifying whether a service implementation is conforming to its service-level agreements is important to inspire confidence in services in a service-oriented architecture (SoA). Functional agreements can be checked by observing the published interface of the service, but other agreements that are more non-functional in nature, are often verified by deploying a monitor that observes the execution of the service implementation. A problem is that such a monitor must execute in an untrusted environment. Thus, integrity of the results reported by such a monitor crucially depends on its integrity. We contribute an extension of the traditional SoA, based on hardware-based root of trust, that allows clients, brokers and providers to negotiate and validate the integrity of a requirements monitor executing in an untrusted environment. We make two basic claims: first, that it is feasible to realize our approach using existing hardware and software solutions, and second, that integrity verification can be done at a relatively small overhead. To evaluate feasibility, we have realized our approach using current software and hardware solutions. To measure overhead, we have conducted a case study using a collection of web service implementations available with Apache Axis implementation.

Cited By

View all

Baccar SRouached MVerborgh RAbid M(2018)Declarative Web services composition using proofsService Oriented Computing and Applications10.1007/s11761-018-0234-412:3-4(371-389)Online publication date: 1-Dec-2018
https://dl.acm.org/doi/10.1007/s11761-018-0234-4
Junod PRinaldini JWehrli JMichielin JFalcarin PWyseur B(2015)Obfuscator-LLVMProceedings of the 1st International Workshop on Software Protection10.5555/2821429.2821434(3-9)Online publication date: 16-May-2015
https://dl.acm.org/doi/10.5555/2821429.2821434
Liu DZic J(2010)Policy-based attestation of service behavior for establishing rigorous trustProceedings of the 2010 international conference on On the move to meaningful internet systems - Volume Part I10.5555/1947725.1947749(240-255)Online publication date: 25-Oct-2010
https://dl.acm.org/doi/10.5555/1947725.1947749
Show More Cited By

Index Terms

Tisa: Toward Trustworthy Services in a Service-Oriented Architecture
1. Information systems
  1. Data management systems
    1. Middleware for databases
      1. Distributed transaction monitors
2. Software and its engineering
  1. Software notations and tools
    1. Context specific languages
      1. Domain specific languages
      2. Specialized application languages
  2. Software organization and properties

Recommendations

Verification and Validation for Trustworthy Software Systems

A continuous and proactive process for conducting verification and validation of systems involves using scenario-based testing to validate whether formal assertions correctly capture the intent of the natural language requirements. The process is ...
Self-Supervising BPEL Processes

Service compositions suffer changes in their partner services. Even if the composition does not change, its behavior may evolve over time and become incorrect. Such changes cannot be fully foreseen through prerelease validation, but impose a shift in ...
Comprehensive Monitoring of BPEL Processes

Service-oriented systems' distributed ownership has led to an increasing focus on runtime management solutions. Service-oriented systems can change greatly after deployment, hampering their quality and reliability. Their service bindings can change, and ...

Comments

Information & Contributors

Information

Published In

cover image IEEE Transactions on Services Computing

IEEE Transactions on Services Computing Volume 1, Issue 4

October 2008

56 pages

ISSN:1939-1374

Issue’s Table of Contents

Publisher

IEEE Computer Society

United States

Publication History

Published: 01 October 2008

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

4
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 09 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Baccar SRouached MVerborgh RAbid M(2018)Declarative Web services composition using proofsService Oriented Computing and Applications10.1007/s11761-018-0234-412:3-4(371-389)Online publication date: 1-Dec-2018
https://dl.acm.org/doi/10.1007/s11761-018-0234-4
Junod PRinaldini JWehrli JMichielin JFalcarin PWyseur B(2015)Obfuscator-LLVMProceedings of the 1st International Workshop on Software Protection10.5555/2821429.2821434(3-9)Online publication date: 16-May-2015
https://dl.acm.org/doi/10.5555/2821429.2821434
Liu DZic J(2010)Policy-based attestation of service behavior for establishing rigorous trustProceedings of the 2010 international conference on On the move to meaningful internet systems - Volume Part I10.5555/1947725.1947749(240-255)Online publication date: 25-Oct-2010
https://dl.acm.org/doi/10.5555/1947725.1947749
Yau SHuang JYin Y(2010)Improving the trustworthiness of service QoS information in service-based systemsProceedings of the 7th international conference on Autonomic and trusted computing10.5555/1927943.1927962(208-218)Online publication date: 26-Oct-2010
https://dl.acm.org/doi/10.5555/1927943.1927962

Abstract

Cited By

Index Terms

Recommendations

Verification and Validation for Trustworthy Software Systems

Self-Supervising BPEL Processes

Comprehensive Monitoring of BPEL Processes

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations