We propose a novel framework for reliably enforcing security in distributed systems. Service automata monitor the execution of a distributed program and enforce countermeasures before a violation of a security policy can occur. A key novelty of our proposal is that security is enforced in a decentralized though coordinated fashion. This provides the basis for reliably enforcing global security requirements without introducing unnecessary latencies or communication overhead. The novel contributions of this article include the concept of service automata and a generic formalization of service automata in CSP. We also illustrate how the generic model can be tailored to given security requirements by instantiating its parameters in a stepwise ...
We propose Distributed Service Control (DSC) technique for securing critical services. One of the ma...
This thesis explores defining security policies in a decentralized setting and dynamic methods of en...
In this paper, we experiment with use of a formal framework for developing secure Web services (WSs)...
We propose a novel framework for reliably enforcing security in distributed systems. Service automat...
A large extent of today's computer programs is distributed. For instance, services for backups, fil...
Policy enforcement, or making sure that software behaves in line with a set of rules, is a problem o...
A precise characterization is given for the class of security policies that can be enforced using me...
Abstract A precise characterization is given for the class of security policies enforceable with mec...
We present a framework for designing and composing services in a secure manner. Services can enforce...
While there is considerable experience with addressing the needs for security and fault-tolerance i...
A static approach is proposed to study secure composition of software. We extend the λ calculus with...
Service Oriented Computing is a paradigm for creating a fully compositional service infrastructure. ...
In the domain of security policy enforcement, the concerns of application developers are almost comp...
Automatic composition of web services is a challeng-ing task. Many works have considered simplified ...
State-of-the-art security mechanisms are often enforced in isolation from each other, which limits t...
We propose Distributed Service Control (DSC) technique for securing critical services. One of the ma...
This thesis explores defining security policies in a decentralized setting and dynamic methods of en...
In this paper, we experiment with use of a formal framework for developing secure Web services (WSs)...
We propose a novel framework for reliably enforcing security in distributed systems. Service automat...
A large extent of today's computer programs is distributed. For instance, services for backups, fil...
Policy enforcement, or making sure that software behaves in line with a set of rules, is a problem o...
A precise characterization is given for the class of security policies that can be enforced using me...
Abstract A precise characterization is given for the class of security policies enforceable with mec...
We present a framework for designing and composing services in a secure manner. Services can enforce...
While there is considerable experience with addressing the needs for security and fault-tolerance i...
A static approach is proposed to study secure composition of software. We extend the λ calculus with...
Service Oriented Computing is a paradigm for creating a fully compositional service infrastructure. ...
In the domain of security policy enforcement, the concerns of application developers are almost comp...
Automatic composition of web services is a challeng-ing task. Many works have considered simplified ...
State-of-the-art security mechanisms are often enforced in isolation from each other, which limits t...
We propose Distributed Service Control (DSC) technique for securing critical services. One of the ma...
This thesis explores defining security policies in a decentralized setting and dynamic methods of en...
In this paper, we experiment with use of a formal framework for developing secure Web services (WSs)...