Security Engineering for Service-Oriented Architectures

By Michael Hafner , Ruth Breu

Security Engineering for Service-Oriented Architectures Cover Image

Based on the paradigm of model-driven security, the authors of this book show how to systematically design and realize security-critical applications for SOAs. In a second step, they apply the principles of model-driven security to SOAs.

Full Description

  • ISBN13: 978-3-5407-9538-4
  • 264 Pages
  • User Level: Professionals
  • Publication Date: October 16, 2008
  • Available eBook Formats: PDF
  • eBook Price: $69.95
Buy eBook Buy Print Book Add to Wishlist

Related Titles

Full Description
While their basic principles and ideas are well understood and cogent from a conceptual perspective, the realization of interorganizational workflows and applications based on service-oriented architectures (SOAs) remains a complex task, and, especially when it comes to security, the implementation is still bound to low-level technical knowledge and hence inherently error-prone. Hafner and Breu set a different focus. Based on the paradigm of model-driven security, they show how to systematically design and realize security-critical applications for SOAs. In their presentation, they first detail how systems and security engineering go hand in hand and are integrated from the very start in the requirements elicitation and the design phase. In a second step, they apply the principles of model-driven security to SOAs. Model-driven security is an engineering paradigm that aims at the automatic generation of security-critical executable software for target architectures. Based on the general principles of model-driven software development, the automation of security engineering through proven and reliable mechanisms guarantees correctness and facilitates an agile and flexible approach to the implementation and high-level management of security-critical systems. Their book addresses IT professionals interested in the design and realization of modern security-critical applications. It presents a synthesis of various best practices, standards and technologies from model-driven software development, security engineering, and SOAs. As a reader, you will learn how to design and realize SOA security using the framework of an extensible domain architecture for model-driven security.
Table of Contents

Table of Contents

  1. Part I: The Basics of SOA Security Engineering.
  2. 1) Introduction
  3. 2) Basic Concepts of Security
  4. 3) SOA
  5. Standards and Technology
  6. 4) Domain Architectures.
  7. Part II: Realizing SOA Security.
  8. 5) Sectino
  9. A Motivating Case Study from E
  10. Government
  11. 6) Security Analysis
  12. 7) Modeling Security Critical SOA Applications
  13. 8) Enforcing Security with the Sectet Reference Architecture
  14. 9) Model Transformation and Code Generation
  15. 10) Software and Security Management
  16. 11) Extending Sectet: Advanced Security Policy Modeling.
  17. Part III: A Case
  18. study from Healthcare.
  19. 12) health@net
  20. A Case Study from Healthcare.
Errata

Please Login to submit errata.

No errata are currently published