Managing impacts of security protocol changes in service-oriented applications

Halvard Skogsrud, Boualem Benatallah, Fabio Casati, Farouk Toumani

Research output: Chapter in Book/Report/Conference proceedingConference contribution

18 Citations (Scopus)

Abstract

We present a software tool and a framework for security protocol change management. While we focus on trust negotiation protocols in this paper, many of the ideas are generally applicable to other types of protocols. Trust negotiation is a flexible approach to access control that is well suited to dynamic environments typical of service-oriented applications. However, managing the evolution of trust negotiation protocols is a difficult problem that has not been sufficiently addressed, especially in situations where there are ongoing negotiations. By using our framework, the consequences of changing the protocol that applies to on-going trust negotiations can be automatically determined. We have also implemented a database-backed GUI tool to manage the change process as an extension of an existing system, and we have performed experiments to test the efficiency of our management software. Our experimental results show that the techniques proposed can scale to applications with tens of thousands of simultaneous users even on commodity PCs.

Original languageEnglish
Title of host publicationProceedings - 29th International Conference on Software Engineering, ICSE 2007
Pages468-477
Number of pages10
DOIs
Publication statusPublished - 2007
Externally publishedYes
Event29th International Conference on Software Engineering, ICSE 2007 - Minneapolis, MN, United States
Duration: 20 May 200726 May 2007

Conference

Conference29th International Conference on Software Engineering, ICSE 2007
CountryUnited States
CityMinneapolis, MN
Period20.5.0726.5.07

Fingerprint

Network protocols
Graphical user interfaces
Access control
Experiments

ASJC Scopus subject areas

  • Software

Cite this

Skogsrud, H., Benatallah, B., Casati, F., & Toumani, F. (2007). Managing impacts of security protocol changes in service-oriented applications. In Proceedings - 29th International Conference on Software Engineering, ICSE 2007 (pp. 468-477). [4222608] https://doi.org/10.1109/ICSE.2007.49

Managing impacts of security protocol changes in service-oriented applications. / Skogsrud, Halvard; Benatallah, Boualem; Casati, Fabio; Toumani, Farouk.

Proceedings - 29th International Conference on Software Engineering, ICSE 2007. 2007. p. 468-477 4222608.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Skogsrud, H, Benatallah, B, Casati, F & Toumani, F 2007, Managing impacts of security protocol changes in service-oriented applications. in Proceedings - 29th International Conference on Software Engineering, ICSE 2007., 4222608, pp. 468-477, 29th International Conference on Software Engineering, ICSE 2007, Minneapolis, MN, United States, 20.5.07. https://doi.org/10.1109/ICSE.2007.49
Skogsrud H, Benatallah B, Casati F, Toumani F. Managing impacts of security protocol changes in service-oriented applications. In Proceedings - 29th International Conference on Software Engineering, ICSE 2007. 2007. p. 468-477. 4222608 https://doi.org/10.1109/ICSE.2007.49
Skogsrud, Halvard ; Benatallah, Boualem ; Casati, Fabio ; Toumani, Farouk. / Managing impacts of security protocol changes in service-oriented applications. Proceedings - 29th International Conference on Software Engineering, ICSE 2007. 2007. pp. 468-477
@inproceedings{8c4d844d394445518f10a1ba9872e726,
title = "Managing impacts of security protocol changes in service-oriented applications",
abstract = "We present a software tool and a framework for security protocol change management. While we focus on trust negotiation protocols in this paper, many of the ideas are generally applicable to other types of protocols. Trust negotiation is a flexible approach to access control that is well suited to dynamic environments typical of service-oriented applications. However, managing the evolution of trust negotiation protocols is a difficult problem that has not been sufficiently addressed, especially in situations where there are ongoing negotiations. By using our framework, the consequences of changing the protocol that applies to on-going trust negotiations can be automatically determined. We have also implemented a database-backed GUI tool to manage the change process as an extension of an existing system, and we have performed experiments to test the efficiency of our management software. Our experimental results show that the techniques proposed can scale to applications with tens of thousands of simultaneous users even on commodity PCs.",
author = "Halvard Skogsrud and Boualem Benatallah and Fabio Casati and Farouk Toumani",
year = "2007",
doi = "10.1109/ICSE.2007.49",
language = "English",
isbn = "0769528287",
pages = "468--477",
booktitle = "Proceedings - 29th International Conference on Software Engineering, ICSE 2007",

}

TY - GEN

T1 - Managing impacts of security protocol changes in service-oriented applications

AU - Skogsrud, Halvard

AU - Benatallah, Boualem

AU - Casati, Fabio

AU - Toumani, Farouk

PY - 2007

Y1 - 2007

N2 - We present a software tool and a framework for security protocol change management. While we focus on trust negotiation protocols in this paper, many of the ideas are generally applicable to other types of protocols. Trust negotiation is a flexible approach to access control that is well suited to dynamic environments typical of service-oriented applications. However, managing the evolution of trust negotiation protocols is a difficult problem that has not been sufficiently addressed, especially in situations where there are ongoing negotiations. By using our framework, the consequences of changing the protocol that applies to on-going trust negotiations can be automatically determined. We have also implemented a database-backed GUI tool to manage the change process as an extension of an existing system, and we have performed experiments to test the efficiency of our management software. Our experimental results show that the techniques proposed can scale to applications with tens of thousands of simultaneous users even on commodity PCs.

AB - We present a software tool and a framework for security protocol change management. While we focus on trust negotiation protocols in this paper, many of the ideas are generally applicable to other types of protocols. Trust negotiation is a flexible approach to access control that is well suited to dynamic environments typical of service-oriented applications. However, managing the evolution of trust negotiation protocols is a difficult problem that has not been sufficiently addressed, especially in situations where there are ongoing negotiations. By using our framework, the consequences of changing the protocol that applies to on-going trust negotiations can be automatically determined. We have also implemented a database-backed GUI tool to manage the change process as an extension of an existing system, and we have performed experiments to test the efficiency of our management software. Our experimental results show that the techniques proposed can scale to applications with tens of thousands of simultaneous users even on commodity PCs.

UR - http://www.scopus.com/inward/record.url?scp=34548793482&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=34548793482&partnerID=8YFLogxK

U2 - 10.1109/ICSE.2007.49

DO - 10.1109/ICSE.2007.49

M3 - Conference contribution

SN - 0769528287

SN - 9780769528281

SP - 468

EP - 477

BT - Proceedings - 29th International Conference on Software Engineering, ICSE 2007

ER -