• DocumentCode
    3382677
  • Title

    Enforcing secure service composition

  • Author

    Bartoletti, Massimo ; Degano, Pierpaolo ; Ferrari, Gian Luigi

  • Author_Institution
    Dipt. di Informatica, Univ. di Pisa, Italy
  • fYear
    2005
  • fDate
    20-22 June 2005
  • Firstpage
    211
  • Lastpage
    223
  • Abstract
    A static approach is proposed to study secure composition of software. We extend the λ-calculus with primitives for invoking services that respect given security requirements. Security-critical code is enclosed in policy framings with a possibly nested, local scope. Policy framings enforce safety and liveness properties of execution histories. The actual histories that can occur at runtime are over-approximated by a type and effect system. These approximations are model-checked to verify policy framings within their scopes. This allows for removing any runtime execution monitor, and for selecting those services that match the security requirements.
  • Keywords
    data encapsulation; lambda calculus; object-oriented programming; safety-critical software; security of data; lambda-calculus; policy framings; secure service composition; secure software composition; security requirements; security-critical code; Assembly; Computer security; Cryptography; Data security; Distributed computing; History; Monitoring; Runtime; Safety; Web services;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computer Security Foundations, 2005. CSFW-18 2005. 18th IEEE Workshop
  • ISSN
    1063-6900
  • Print_ISBN
    0-7695-2340-4
  • Type

    conf

  • DOI
    10.1109/CSFW.2005.17
  • Filename
    1443208