Title :
Managing Impacts of Security Protocol Changes in Service-Oriented Applications
Author :
Skogsrud, Halvard ; Benatallah, Boualem ; Casati, Fabio ; Toumani, Farouk
Author_Institution :
ThoughtWorks Australia, Sydney, NSW
Abstract :
We present a software tool and a framework for security protocol change management. While we focus on trust negotiation protocols in this paper, many of the ideas are generally applicable to other types of protocols. Trust negotiation is a flexible approach to access control that is well suited to dynamic environments typical of service-oriented applications. However, managing the evolution of trust negotiation protocols is a difficult problem that has not been sufficiently addressed, especially in situations where there are ongoing negotiations. By using our framework, the consequences of changing the protocol that applies to ongoing trust negotiations can be automatically determined. We have also implemented a database-backed GUI tool to manage the change process as an extension of an existing system, and we have performed experiments to test the efficiency of our management software. Our experimental results show that the techniques proposed can scale to applications with tens of thousands of simultaneous users even on commodity PCs.
Keywords :
management of change; protocols; security of data; software architecture; software development management; software tools; database-backed GUI tool; security protocol change management; service-oriented applications; software tool; trust negotiation protocols; Access control; Access protocols; Application software; Databases; Graphical user interfaces; Performance evaluation; Security; Software testing; Software tools; System testing;
Conference_Titel :
Software Engineering, 2007. ICSE 2007. 29th International Conference on
Conference_Location :
Minneapolis, MN
Print_ISBN :
0-7695-2828-7
DOI :
10.1109/ICSE.2007.49
