Trading off security in a service oriented architecture

ePubs

The open archive for STFC research publications

Persistent URL	http://purl.org/net/epubs/work/41621
Record Status	Checked
Record Id	41621
Title	Trading off security in a service oriented architecture
Contributors	G Swart (IBM), B Aziz (Imperial College London), S Foley (University College Cork), J Herbert (University College Cork)
Abstract	Service oriented architectures provide a simple yet flexible model of a computing system as a graph of services making requests and providing results to each other. In this paper we define a formal model of a service oriented architecture and using it, we define metrics for performance, for availability, and for various security properties. These metrics serve as the basis for expressing the business requirements. To make trade-offs possible we also define a set of cost metrics, denominated in a uniform currency, to measure the cost of not meeting a requirement. The model, the property metrics, and the cost metrics are then used to generate a Constraint Satisfaction Problem where the objective function is set to minimize the aggregate system cost. We have written these constraints and defined realistic requirements in OPL and we have used them to generate system configurations that minimize the overall cost by optimally trading off the business requirements.
Organisation	CCLRC
Keywords	Engineering , Security , Service Oriented Computing , Constraint Satisfaction Problem
Funding Information
Related Research Object(s):
Licence Information:
Language	English (EN)

Type	Details	URI(s)	Local file(s)	Year
Paper In Conference Proceedings	In 19th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (DBSec 2005), Storrs, CT, USA, 7-10 Aug 2005, (2005).	doi:10.1007/11535706	securitytradeoffsFinal.pdf	2005