Istituto di Informatica e Telematica     
Krautsevich L., Martinelli F., Yautsiukhin A. A General Method for Assessment of Security in Complex Services. In: ServiceWave'11 - 4th European Conference ServiceWave (Poznan, Poland, 26-28 Ottobre 2011). Proceedings, pp. 153 - 164. Springer-Verlag, 2011.
We focus on the assessment of the security of business processes. We assume that a business process is composed of abstract services, each of which has several concrete instantiations. Essential peculiarity of our method is that we express security metrics used for the evaluation of security properties as semirings. First, we consider primitive decomposition of the business process into a weighted graph which describes possible implementations of the business process. Second, we evaluate the security using semiring-based methods for graph analysis. Finally, we exploit semirings to describe the mapping between security metrics which is useful when different metrics are used for the evaluation of security properties of services.
URL: http://dl.acm.org/citation.cfm?id=2050869.2050885
DOI: 10.1007/978-3-642-24755-2_14
Subject business processes
design graph
K.6.5 Security and protection

Icona documento 1) Download Document PDF
Icona documento 2) Download Document PDF

Icona documento Open access Icona documento Restricted Icona documento Private


Per ulteriori informazioni, contattare: Librarian http://puma.isti.cnr.it

Valid HTML 4.0 Transitional