Publication Date:
2011
Citation:
Fine-grained modeling of web services for test-based security certification / M. Anisetti, C.A. Ardagna, E. Damiani - In: 2011 IEEE international conference on services computing : SCC 2011 : 4–9 july 2011,
Washington DC, USA : proceedings / [a cura di] H.- A. Jacobsen, Y. Wang, P. Hung. - Los Alamitos : Institute of electrical and electronics engineers, 2011. - ISBN 9781457708633. - pp. 456-463 (( convegno IEEE International Conference on Services Computing (SCC) tenutosi a Washington nel 2011 [10.1109/SCC.2011.27].
abstract:
We present a solution for test-based security certification of services that models the service under certification using a Symbolic Transition System (STS). The STS-based
model is readily derivable from the Web Service Description Language (WSDL) and Web Service Conversation Language (WSCL) of the service, and can be enriched with details about
test-based conditions on inputs and outputs, implementation details, and security specifications. In addition, we show how
such fine-grained modeling can be included in a test-based security certification process. Finally, we discuss how this process can be integrated within the Web service life-cycle and used for matching users’ preferences and comparing certificates of different services.
model is readily derivable from the Web Service Description Language (WSDL) and Web Service Conversation Language (WSCL) of the service, and can be enriched with details about
test-based conditions on inputs and outputs, implementation details, and security specifications. In addition, we show how
such fine-grained modeling can be included in a test-based security certification process. Finally, we discuss how this process can be integrated within the Web service life-cycle and used for matching users’ preferences and comparing certificates of different services.
IRIS type:
03 - Contributo in volume
Keywords:
Web services ; SOA ; Testing ; WSDL ; WSCL
List of contributors:
M. Anisetti, C.A. Ardagna, E. Damiani
Link to information sheet:
Book title:
2011 IEEE international conference on services computing : SCC 2011 : 4–9 july 2011,
Washington DC, USA : proceedings
Washington DC, USA : proceedings