ThinkMind // SERVICE COMPUTATION 2011, The Third International Conferences on Advanced Service Computing // View article service_computation_2011_4_40_10091
Complex Event Processing for Usage Control in Service Oriented Infrastructures
Keywords: Service Oriented Architecture; Web service; Usage Control; Complex Event Processing;Policies.
Service oriented architectures (SOA) should adhere to clearly defined quality attributes, which are formalized using policies. Well-known attributes in the security realm are access control and usage control. Our approach is to analyze operations (e.g., data deletion) and data flows that occur within a SOA. We use the extracted information to monitor policies, especially usage control policies. We focus on usage control, which is by far not as well investigated as access control, but highly relevant for providers of sensitive data who do not want to lose control on their data. We show that there is a transfor-mation that maps usage control formulas, formalized in an appropriate policy language, to rules based on Complex Event Processing (CEP) technology. We further argue that by the combination of a policy language, the CEP technology, sensor components and a transformation from policy language to CEP rules SOA infrastructures can be enabled for usage control.
Pages: 92 to 97
Copyright: Copyright (c) IARIA, 2011
Publication date: September 25, 2011
Published in: conference
Location: Rome, Italy
Dates: from September 25, 2011 to September 30, 2011