Nessos cluster meeting

591 views

Published on

Published in: Technology, Business
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
591
On SlideShare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
4
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Nessos cluster meeting

  1. 1. A GENERAL FRAMEWORK FOR SECURITY-AWARE ANALYSIS OF SERVICESLeanid Krautsevich, Fabio Martinelli and Artsiom Yautsiukhin CNR
  2. 2. Outline Motivation Graph Building Semirings Selection the best process Interoperability Conclusion
  3. 3. Motivation Many security metrics and trust metrics for assessment Services are composed in run-time and security and trust must be taken into account Provide a uniform framework for analysis of different metrics.
  4. 4. Transformation of BP to a tree Business Process Process Flow Process algebra Tree
  5. 5. Transformation of BP to a tree
  6. 6. Semirings S=<A, , , 0, 1> A is a set of elements and 0,1 ∈ A - additive operation over A. Commutative Associative 0 – its unit element. a 0=a=0 a - multiplicative operation over A. Distributive over the additive operation 1 – its unit element. a 1=a= 1 a 0 - its annihilator: . a 0=0=0 a
  7. 7. Security metrics as semirings Risk = <R+, min, + , ∞,0> min() – associative and commutative min(a,∞)=a + - distributive over min a + 0 =a a+∞ = ∞ Probability of attacks, trust = <[0,1], max, × , 0, 1 > Minimal number of attacks = <N+, min, + , ∞ ,0> Maximal Latency = < R+, max, min, 0, >
  8. 8. - select the best alternative- aggregate values
  9. 9. Analysis Problems: Find the best case (the best BP) Find the worst case (the BP which can be guaranteed) Selection of concrete services … Solutions for semirings already exist.
  10. 10. Interoperability Quantitative <R+, min, + , ∞ ,0> Qualitative <D, +’, x’ , 0, 1> D = {high, medium, low} +’ =high < medium < low x’ = risk matrix 0 = high, 1 = low
  11. 11. Conclusion Semirings is a useful technique for assessment of BP Semirings help to perform various types of analysis Semirings also may help to analyse BP when different metrics are used
  12. 12. Future work Improve the transformation process in order to deal with non-deterministic choice. Consider different metrics Consider different types of analysis applicable for semirings Investigate deeply interoperability relations between various metrics

×