Coordination sécurisée des services

Abstract : Service-based application is built out of activities; each activity corresponds to an invocation (through a communication infrastructure) of an existing service's function. Activities are coordinated by a plan specifying the instructions to be realized. To secure such applications, current works consider the security at the service level and at the service communication level. However, security measures at these levels are mapped inadequately at the coordination level. This thesis focuses on the secure coordination for securing service-based applications. We consider a functional safety level for (i) activities of a coordination plan; (ii) data exchanged between services; and (iii) functions of services to be invoked. Secure coordination is defined through three key concepts: (i) activities to be carried out with certain properties in the scope of coordination plan, (ii) constraints associated with the activities, which control various considered aspects of the plan; and (iii) coordination logs, built from the execution proofs of activities. A secure coordination plan is described as a set of activities, whose constraints to be satisfied are well formed formulas, correctly associated, coherent and evaluable. Execute such a plan corresponds to execute activities by evaluating the constraints. It also consists in evaluating if the services' functions invocations are well done. The plan execution can adapt to the new requirements and changes (of properties, constraints, of constraint solvers, etc.) interfering at the execution time.
This thesis contributes a description model of secure coordination plans; a dynamic evaluation model of these plans and a framework which supports the specification, the transformation, the execution and the management of these plans.
Document type :
Theses
Complete list of metadatas

Cited literature [52 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-00342253
Contributor : Thi Huong Giang Vu <>
Submitted on : Thursday, November 27, 2008 - 12:28:32 AM
Last modification on : Friday, October 25, 2019 - 2:01:27 AM
Long-term archiving on : Monday, June 7, 2010 - 11:28:40 PM

Identifiers

  • HAL Id : tel-00342253, version 1

Collections

Citation

Thi Huong Giang Vu. Coordination sécurisée des services. Informatique [cs]. Institut National Polytechnique de Grenoble - INPG, 2008. Français. ⟨tel-00342253⟩

Share

Metrics

Record views

377

Files downloads

405