Skip to Main content Skip to Navigation
New interface
Theses

Politique de contrôle de flux d'information définie par les utilisateurs pour les orchestrations de services. Mise en oeuvre dans un orchestrateur BPEL

Thomas Demongeot 1, 2 
1 OCIF - Objets communicants pour l'Internet du futur
Télécom Bretagne, IRISA-D2 - RÉSEAUX, TÉLÉCOMMUNICATION ET SERVICES
Abstract : Web Services are currently the base of a lot e-commerce application. Today's security solutions proposed for Web services help to protect communications confidentiality and integrity between Web services and to control access to Web services. Nevertheless, clients often use these services without knowing anything about their internals. Moreover, they have no clue about the use of their personal data inside the global application. BPEL (Business Process Execution Language) is a programming language orchestrating Web Services within Service-Oriented Architecture (SOA). As one feature of SOAs is the dynamic discovery of services actually used during execution, a BPEL user does not know prior to the execution how, and by whom, the data he provides will be used. In this thesis we propose a model of political control information flow suitable for service-oriented architectures and in particular orchestrations of services. This model offers the opportunity to the user to specify constraints on the use of its personal data. This policy is configured at runtime by the user of the BPEL program. However, the dynamic aspects of the web services lead to situations in which the policy prohibits the nominal operation of the orchestration (e.g., when using a service that is unknown by the user). To solve this problem, we suggest the user to dynamically allow exceptional unauthorized flows. In order to make his decision, the user is provided with all information necessary for decision-making. We then applied this approach to BPEL orchestration language. In particular, we presented the main information flow involved in this language. Finally, we proposed an implementation of these information flow control mechanisms by modifying an existing BPEL orchestrator.
Document type :
Theses
Complete list of metadata

Cited literature [80 references]  Display  Hide  Download

https://tel.archives-ouvertes.fr/tel-00959447
Contributor : Bibliothèque Télécom Bretagne Connect in order to contact the contributor
Submitted on : Friday, March 14, 2014 - 3:02:17 PM
Last modification on : Tuesday, October 19, 2021 - 11:58:57 PM
Long-term archiving on: : Saturday, June 14, 2014 - 11:36:25 AM

File

2013telb0290_Demongeot_Thomas....
Files produced by the author(s)

Identifiers

  • HAL Id : tel-00959447, version 1

Citation

Thomas Demongeot. Politique de contrôle de flux d'information définie par les utilisateurs pour les orchestrations de services. Mise en oeuvre dans un orchestrateur BPEL. Web. Télécom Bretagne, Université de Rennes 1, 2013. Français. ⟨NNT : ⟩. ⟨tel-00959447⟩

Share

Metrics

Record views

428

Files downloads

957