To form and automatically manage partnerships within a virtual organisation, it is necessary to have an electronic representation of the contract governing business relationships that can be used to mediate the rights and obligations that each interacting entity promises to honour. The paper describes a general method of representing business interactions using a widely used modelling language Promela and discusses how to represent permissions, obligations, prohibitions, actors (agents), time constraints, and message type checking; that is, all the basic parameters that compose most typical business contracts. Two levels of contract representations are described: implementation neutral, and implementation specific, that is a refinement of the former to include technical details such as acknowledgements and synchronization messages that form an important part of any implementation.
{"title":"A method for specifying contract mediated interactions","authors":"Carlos Molina-Jiménez, S. Shrivastava, J. Warne","doi":"10.1109/EDOC.2005.1","DOIUrl":"https://doi.org/10.1109/EDOC.2005.1","url":null,"abstract":"To form and automatically manage partnerships within a virtual organisation, it is necessary to have an electronic representation of the contract governing business relationships that can be used to mediate the rights and obligations that each interacting entity promises to honour. The paper describes a general method of representing business interactions using a widely used modelling language Promela and discusses how to represent permissions, obligations, prohibitions, actors (agents), time constraints, and message type checking; that is, all the basic parameters that compose most typical business contracts. Two levels of contract representations are described: implementation neutral, and implementation specific, that is a refinement of the former to include technical details such as acknowledgements and synchronization messages that form an important part of any implementation.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"28 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"121380028","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
As an intermediate step within a larger endeavor aiming at the definition of automatic transformations between two widespread technologies, namely EJB and .Net components, we propose and discuss a metamodel for the .Net platform that captures the appropriate modeling concepts required for the definition and automatic generation of .Net PSMs from (legacy) J2EE PSMs.
{"title":"An MBA-oriented .Net metamodel","authors":"Jamal Abd-Ali, K. E. Guemhioui","doi":"10.1109/EDOC.2005.8","DOIUrl":"https://doi.org/10.1109/EDOC.2005.8","url":null,"abstract":"As an intermediate step within a larger endeavor aiming at the definition of automatic transformations between two widespread technologies, namely EJB and .Net components, we propose and discuss a metamodel for the .Net platform that captures the appropriate modeling concepts required for the definition and automatic generation of .Net PSMs from (legacy) J2EE PSMs.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"22 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"125177208","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Nowadays, enterprise application integration (EAI) constitutes a real and growing need for most of enterprises, especially for large and dynamic enterprises of heterogeneous, autonomous and distributed information systems. Actually, the major problem of EAI is the heterogeneity problem, especially the semantic integration one. This latter is not correctly addressed by today's solutions, which focus mainly on technical and syntactical integration. Dealing with the semantic aspect, which certainly promotes EAI by providing it more consistency and robustness, needs some appropriate principles such as the knowledge or ontology urbanization. This latter constitutes the main focus of this paper. It aims to favour the semantic application integration, precisely by providing it more appropriate knowledge structuring that can help any enterprise to correctly capture, structure and master its semantics, which constitutes a big challenge for several enterprises that are in quest of more flexibility and manageability.
{"title":"Ontology urbanization for semantic integration: dealing with semantics within large and dynamic enterprises","authors":"S. Izza, L. Vincent, P. Burlat","doi":"10.1109/EDOC.2005.27","DOIUrl":"https://doi.org/10.1109/EDOC.2005.27","url":null,"abstract":"Nowadays, enterprise application integration (EAI) constitutes a real and growing need for most of enterprises, especially for large and dynamic enterprises of heterogeneous, autonomous and distributed information systems. Actually, the major problem of EAI is the heterogeneity problem, especially the semantic integration one. This latter is not correctly addressed by today's solutions, which focus mainly on technical and syntactical integration. Dealing with the semantic aspect, which certainly promotes EAI by providing it more consistency and robustness, needs some appropriate principles such as the knowledge or ontology urbanization. This latter constitutes the main focus of this paper. It aims to favour the semantic application integration, precisely by providing it more appropriate knowledge structuring that can help any enterprise to correctly capture, structure and master its semantics, which constitutes a big challenge for several enterprises that are in quest of more flexibility and manageability.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"31 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126641151","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
It is now recognized that nonfunctional properties are important to practical software development and maintenance. Many of these properties involve time and probabilities - for example, reliability and availability. In this paper, we present a framework for runtime verification of timed and probabilistic nonfunctional properties of component-based architectures, built using the meta-object facility and the Distributed Management Task Force's common information model (CIM) standard. We describe a Microsoft .NET-based implementation of our framework. We use a language for contracts based on probabilistic computational tree logic (PCTL). We provide a formal semantics for this language based on possible application execution traces. The semantics is parametrized with respect to the choice of application states and state changes to be monitored. This enables us to use the language to define a wide range of nonfunctional properties. We explain how our framework associates constraints with systems that expose management information through the CIM, via a novel extension of the CIM metamodel.
{"title":"Timed probabilistic constraints over the Distributed Management Taskforce common information model","authors":"I. Poernomo, Jane Jayaputera, H. Schmidt","doi":"10.1109/EDOC.2005.31","DOIUrl":"https://doi.org/10.1109/EDOC.2005.31","url":null,"abstract":"It is now recognized that nonfunctional properties are important to practical software development and maintenance. Many of these properties involve time and probabilities - for example, reliability and availability. In this paper, we present a framework for runtime verification of timed and probabilistic nonfunctional properties of component-based architectures, built using the meta-object facility and the Distributed Management Task Force's common information model (CIM) standard. We describe a Microsoft .NET-based implementation of our framework. We use a language for contracts based on probabilistic computational tree logic (PCTL). We provide a formal semantics for this language based on possible application execution traces. The semantics is parametrized with respect to the choice of application states and state changes to be monitored. This enables us to use the language to define a wide range of nonfunctional properties. We explain how our framework associates constraints with systems that expose management information through the CIM, via a novel extension of the CIM metamodel.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"8 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"127775280","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
The management of IT landscapes consisting of thousands of business applications, different middleware systems, and supporting various business processes is a challenge for modern IT management. The BMW Group has addressed this challenge by establishing an integrated IT management process which covers strategy, architecture, planning and controlling. The BMW Group integrates the following preexisting IT processes in a continuous management process: "architecture and standardization" defines blueprints in terms of architectural patterns; "landscape management" maintains an overall model of the (present and future) IT landscape; "portfolio management" coordinates, evaluates and prioritizes action items with IT impact; "synchronization management" manages ongoing (IT) projects, their dependencies and the cross functions; "strategy and objectives" generates action items, defines guidelines for the other processes and adjusts strategies based on feedback from the other processes. This paper describes the problems that arise if such an integrated, continuous management process is lacking.
{"title":"Improving IT management at the BMW Group by integrating existing IT management processes","authors":"F. Fischer, F. Matthes, A. Wittenburg","doi":"10.1109/EDOC.2005.17","DOIUrl":"https://doi.org/10.1109/EDOC.2005.17","url":null,"abstract":"The management of IT landscapes consisting of thousands of business applications, different middleware systems, and supporting various business processes is a challenge for modern IT management. The BMW Group has addressed this challenge by establishing an integrated IT management process which covers strategy, architecture, planning and controlling. The BMW Group integrates the following preexisting IT processes in a continuous management process: \"architecture and standardization\" defines blueprints in terms of architectural patterns; \"landscape management\" maintains an overall model of the (present and future) IT landscape; \"portfolio management\" coordinates, evaluates and prioritizes action items with IT impact; \"synchronization management\" manages ongoing (IT) projects, their dependencies and the cross functions; \"strategy and objectives\" generates action items, defines guidelines for the other processes and adjusts strategies based on feedback from the other processes. This paper describes the problems that arise if such an integrated, continuous management process is lacking.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"266 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"133209696","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
D. Karastoyanova, Alejandro Houspanossian, Mariano Cilia, F. Leymann, A. Buchmann
The existing Web service flow (WS-flow) technologies enable both static and dynamic binding of participating Web services (WSs) on the process model level. Adaptability on per-instance basis is not sufficiently supported and therefore must be addressed to improve process flexibility upon changes in the environment. Ad-hoc process instance changes can be enabled by swapping participating WS instances, by modifying port types of the partners to be invoked, and by changing process logic. In this work, we address the problem of dynamic binding of WSs to WS-flow instances at run time, i.e. the ability to exchange a WS instance participating in a WS-flow instance with an alternative one. The problem is additionally complicated by the fact that the execution of a process depends on its deployment. We describe the "find and bind" mechanism, and we show its representation as a BPEL extension. We discuss the benefits that could be gained and the disadvantages it brings in. The mechanism extends and improves the existing process technologies. It facilitates a precisely controlled policy-based selection of WSs at run time and also provides for process instance repair, while maintaining simplicity. We also discuss a prototypical implementation of the presented functionality.
{"title":"Extending BPEL for run time adaptability","authors":"D. Karastoyanova, Alejandro Houspanossian, Mariano Cilia, F. Leymann, A. Buchmann","doi":"10.1109/EDOC.2005.14","DOIUrl":"https://doi.org/10.1109/EDOC.2005.14","url":null,"abstract":"The existing Web service flow (WS-flow) technologies enable both static and dynamic binding of participating Web services (WSs) on the process model level. Adaptability on per-instance basis is not sufficiently supported and therefore must be addressed to improve process flexibility upon changes in the environment. Ad-hoc process instance changes can be enabled by swapping participating WS instances, by modifying port types of the partners to be invoked, and by changing process logic. In this work, we address the problem of dynamic binding of WSs to WS-flow instances at run time, i.e. the ability to exchange a WS instance participating in a WS-flow instance with an alternative one. The problem is additionally complicated by the fact that the execution of a process depends on its deployment. We describe the \"find and bind\" mechanism, and we show its representation as a BPEL extension. We discuss the benefits that could be gained and the disadvantages it brings in. The mechanism extends and improves the existing process technologies. It facilitates a precisely controlled policy-based selection of WSs at run time and also provides for process instance repair, while maintaining simplicity. We also discuss a prototypical implementation of the presented functionality.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128942515","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Assessing the level of information security in an enterprise is a serious challenge for many organizations. This paper considers the prioritization of the field of enterprise information security. The paper thus considers how we may know what parts of information security are important for a company to address and what parts are not. Two methods for prioritization are used. The results demonstrate to what extent different standards committees, guideline authors and expert groups differ in their opinions on what the important issues are in enterprise information security. The ISO/IEC 17799, the NIST SP 800-26, the ISF standards committees, the CMU/SEI OCTAVE framework authors and an expert panel at the Swedish Information Processing Society (DFS) are considered. The differences in prioritization have important consequences on enterprise information security assessments. The effects on the information security assessment results in a European energy company are presented in the paper.
{"title":"Assessment of enterprise information security - the importance of prioritization $","authors":"Erik Johansson, Pontus Johnson","doi":"10.1109/EDOC.2005.9","DOIUrl":"https://doi.org/10.1109/EDOC.2005.9","url":null,"abstract":"Assessing the level of information security in an enterprise is a serious challenge for many organizations. This paper considers the prioritization of the field of enterprise information security. The paper thus considers how we may know what parts of information security are important for a company to address and what parts are not. Two methods for prioritization are used. The results demonstrate to what extent different standards committees, guideline authors and expert groups differ in their opinions on what the important issues are in enterprise information security. The ISO/IEC 17799, the NIST SP 800-26, the ISF standards committees, the CMU/SEI OCTAVE framework authors and an expert panel at the Swedish Information Processing Society (DFS) are considered. The differences in prioritization have important consequences on enterprise information security assessments. The effects on the information security assessment results in a European energy company are presented in the paper.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"30 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"121135616","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
The use of open, Internet-based communications for business-to-business (B2B) interactions requires accountability for and acknowledgment of the actions of participants. Accountability and acknowledgment can be achieved by the systematic maintenance of an irrefutable audit trail to render the interaction non-repudiable. To safeguard the interests of each party, the mechanisms used to meet this requirement should ensure fairness. That is, misbehaviour should not disadvantage well-behaved parties. Despite the fact that Web services are increasingly used to enable B2B interactions, there is currently no systematic support to deliver such guarantees. This paper introduces a flexible framework to support fair non-repudiable B2B interactions based on a trusted delivery agent. A Web services implementation is presented. The role of the delivery agent can be adapted to different end user capabilities and to meet different application requirements.
{"title":"Implementing fair non-repudiable interactions with Web services","authors":"P. Robinson, N. Cook, S. Shrivastava","doi":"10.1109/EDOC.2005.16","DOIUrl":"https://doi.org/10.1109/EDOC.2005.16","url":null,"abstract":"The use of open, Internet-based communications for business-to-business (B2B) interactions requires accountability for and acknowledgment of the actions of participants. Accountability and acknowledgment can be achieved by the systematic maintenance of an irrefutable audit trail to render the interaction non-repudiable. To safeguard the interests of each party, the mechanisms used to meet this requirement should ensure fairness. That is, misbehaviour should not disadvantage well-behaved parties. Despite the fact that Web services are increasingly used to enable B2B interactions, there is currently no systematic support to deliver such guarantees. This paper introduces a flexible framework to support fair non-repudiable B2B interactions based on a trusted delivery agent. A Web services implementation is presented. The role of the delivery agent can be adapted to different end user capabilities and to meet different application requirements.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"44 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132942683","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Data warehouse (DWH) information is accessed by business processes, and sometimes may also initiate changes of the control flow of business process instances. Today, there are no conceptual models available that make the relationship between the DWH and the business processes transparent. In this paper, we extend the event-driven process chain, a business process modeling language, with an additional perspective to make this relationship explicit in a conceptual model. The model is tested with example business processes.
{"title":"Bridging the gap between data warehouses and business processes: a business intelligence perspective for event-driven process chains","authors":"V. Stefanov, B. List","doi":"10.1109/EDOC.2005.11","DOIUrl":"https://doi.org/10.1109/EDOC.2005.11","url":null,"abstract":"Data warehouse (DWH) information is accessed by business processes, and sometimes may also initiate changes of the control flow of business process instances. Today, there are no conceptual models available that make the relationship between the DWH and the business processes transparent. In this paper, we extend the event-driven process chain, a business process modeling language, with an additional perspective to make this relationship explicit in a conceptual model. The model is tested with example business processes.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"127 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"134405350","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
This paper describes an approach towards workflow management based on the combination of learning and planning. Assuming that processes cannot be fully described at build-time, the approach makes use of learning techniques, namely inductive logic programming (ILP), in order to discover workflow activities as planning operators. These operators are subsequently fed to a partial-order planner in order to find the process model as a planning solution. The continuous interplay between learning, planning and execution aims at arriving at a feasible plan by successive refinement of the operators. The approach is illustrated in two simple scenarios. The paper concludes by relating the proposed approach with previous developments in this area.
{"title":"Learning, planning, and the life cycle of workflow management","authors":"Diogo R. Ferreira, Hugo M. Ferreira","doi":"10.1109/EDOC.2005.20","DOIUrl":"https://doi.org/10.1109/EDOC.2005.20","url":null,"abstract":"This paper describes an approach towards workflow management based on the combination of learning and planning. Assuming that processes cannot be fully described at build-time, the approach makes use of learning techniques, namely inductive logic programming (ILP), in order to discover workflow activities as planning operators. These operators are subsequently fed to a partial-order planner in order to find the process model as a planning solution. The continuous interplay between learning, planning and execution aims at arriving at a feasible plan by successive refinement of the operators. The approach is illustrated in two simple scenarios. The paper concludes by relating the proposed approach with previous developments in this area.","PeriodicalId":106387,"journal":{"name":"Ninth IEEE International EDOC Enterprise Computing Conference (EDOC'05)","volume":"36 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2005-09-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"133751545","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
京公网安备 11010802042870号
京ICP备2023020795号-1
扫码关注我们
求助内容:
应助结果提醒方式: