Fine-grained modeling of web services for test-based security certification

Marco Anisetti, Claudio A. Ardagna, Ernesto Damiani

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

19 Scopus citations

Abstract

We present a solution for test-based security certification of services that models the service under certification using a Symbolic Transition System (STS). The STS-based model is readily derivable from the Web Service Description Language (WSDL) and Web Service Conversation Language (WSCL) of the service, and can be enriched with details about test-based conditions on inputs and outputs, implementation details, and security specifications. In addition, we show how such fine-grained modeling can be included in a test-based security certification process. Finally, we discuss how this process can be integrated within the Web service life-cycle and used for matching users' preferences and comparing certificates of different services.

Original languageBritish English
Title of host publicationProceedings - 2011 IEEE International Conference on Services Computing, SCC 2011
Pages456-463
Number of pages8
DOIs
StatePublished - 2011
Event2011 IEEE International Conference on Services Computing, SCC 2011 - Washington, DC, United States
Duration: 4 Jul 20119 Jul 2011

Publication series

NameProceedings - 2011 IEEE International Conference on Services Computing, SCC 2011

Conference

Conference2011 IEEE International Conference on Services Computing, SCC 2011
Country/TerritoryUnited States
CityWashington, DC
Period4/07/119/07/11

Keywords

  • SOA
  • Testing
  • Web service
  • WSCL
  • WSDL

Fingerprint

Dive into the research topics of 'Fine-grained modeling of web services for test-based security certification'. Together they form a unique fingerprint.

Cite this