IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca

Certification is a well-established approach for the provision of assertions on security and privacy properties of entities (products, systems, services). People using (or other entities interacting with) certified entities can rely on the asserted properties, provided that the process of certification is known to produce sufficient evidence for the validity of the property for the certified entity. Today, business processes are increasingly implemented via run-time selection and composition of remote components provided by service suppliers. On the future Internet of Services, service purchasers will like (i) to have certified evidence that the remote services possess some desired non-functional properties, including service security, reliability, and quality, (ii) to be able to infer process-level properties across certified services’ composition. In this chapter, we provide a first analysis of the challenges to be faced toward security certification in the Internet of services, outlining possible solutions and future research directions.

Certifying security and privacy properties in the Internet of services / M. Anisetti, C.A. Ardagna, E. Damiani - In: Trustworthy Internet / [a cura di] L. Salgarelli, G. Bianchi, N. Blefari-Melazzi. - Berlin : Springer, 2011. - ISBN 9788847018174. - pp. 221-234 [10.1007/978-88-470-1818-1_17]

Certifying security and privacy properties in the Internet of services

M. Anisetti
Primo
;C.A. Ardagna
Secondo
;E. Damiani
Ultimo
2011

Abstract

Certification is a well-established approach for the provision of assertions on security and privacy properties of entities (products, systems, services). People using (or other entities interacting with) certified entities can rely on the asserted properties, provided that the process of certification is known to produce sufficient evidence for the validity of the property for the certified entity. Today, business processes are increasingly implemented via run-time selection and composition of remote components provided by service suppliers. On the future Internet of Services, service purchasers will like (i) to have certified evidence that the remote services possess some desired non-functional properties, including service security, reliability, and quality, (ii) to be able to infer process-level properties across certified services’ composition. In this chapter, we provide a first analysis of the challenges to be faced toward security certification in the Internet of services, outlining possible solutions and future research directions.
English
Service composition ; Security ; Remote services
Settore INF/01 - Informatica
Capitolo o Saggio
   Advanced Security Service cERTificate for SOA
   ASSERT4SOA
   EUROPEAN COMMISSION
   FP7
   257351
Trustworthy Internet
L. Salgarelli, G. Bianchi, N. Blefari-Melazzi
Berlin
Springer
2011
221
234
9788847018174
Volume a diffusione internazionale
WOS:000397483800017
2-s2.0-84904889641
M. Anisetti, C.A. Ardagna, E. Damiani
Book Part (author)
none
268
Certifying security and privacy properties in the Internet of services / M. Anisetti, C.A. Ardagna, E. Damiani - In: Trustworthy Internet / [a cura di] L. Salgarelli, G. Bianchi, N. Blefari-Melazzi. - Berlin : Springer, 2011. - ISBN 9788847018174. - pp. 221-234 [10.1007/978-88-470-1818-1_17]
info:eu-repo/semantics/conferenceObject
3
Prodotti della ricerca::03 - Contributo in volume
03 - Contributo in volume
File in questo prodotto:
Non ci sono file associati a questo prodotto.
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/152195
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 4
  • ???jsp.display-item.citation.isi??? 2
social impact