Web services are self-contained, modular units of application logic which provide business functionality to other applications via Internet connections. Several models have been used to compose Web services which are mainly served at specification level and provide static data dependent coordination processes. Hence they can not support reconfigurable dynamic coordination processes in which participant Web services and the coordination process itself will not be known explicitly prior to execution and would be determined dynamically at run time. In this paper we present a framework to coordinate Web services using Reo coordination language. Reo is a channel-based exogenous coordination language which has a formal basis and supports loose coupling, distribution, dynamic reconfiguration and mobility. Given that Web services are inherently loosely coupled and primarily built independently, the channel-based structure of Reo and its reconfigurability will provide a reconfigurable coordination mechanism for Web service composition. The proposed approach is a distributed dynamic orchestration framework which uses Reo channels as a communication means between Web services and benefits from Reo reconfiguration property to provide a dynamic coordination process. Due to data independence property of Reo, the proposed model is a data neutral framework which is mainly focused on coordination. In this paper we also present a number of case studies by using the proposed framework and investigate its pros and cons through these case studies.
{"title":"A Dynamic Reconfigurable Web Service Composition Framework Using Reo Coordination Language","authors":"Soheil Saifipoor, B. T. Ladani, N. Nematbakhsh","doi":"10.1109/ECOWS.2007.2","DOIUrl":"https://doi.org/10.1109/ECOWS.2007.2","url":null,"abstract":"Web services are self-contained, modular units of application logic which provide business functionality to other applications via Internet connections. Several models have been used to compose Web services which are mainly served at specification level and provide static data dependent coordination processes. Hence they can not support reconfigurable dynamic coordination processes in which participant Web services and the coordination process itself will not be known explicitly prior to execution and would be determined dynamically at run time. In this paper we present a framework to coordinate Web services using Reo coordination language. Reo is a channel-based exogenous coordination language which has a formal basis and supports loose coupling, distribution, dynamic reconfiguration and mobility. Given that Web services are inherently loosely coupled and primarily built independently, the channel-based structure of Reo and its reconfigurability will provide a reconfigurable coordination mechanism for Web service composition. The proposed approach is a distributed dynamic orchestration framework which uses Reo channels as a communication means between Web services and benefits from Reo reconfiguration property to provide a dynamic coordination process. Due to data independence property of Reo, the proposed model is a data neutral framework which is mainly focused on coordination. In this paper we also present a number of case studies by using the proposed framework and investigate its pros and cons through these case studies.","PeriodicalId":436126,"journal":{"name":"Fifth European Conference on Web Services (ECOWS'07)","volume":"29 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-11-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"127762503","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Meiko Jensen, Nils Gruschka, Ralph Herkenhöner, N. Luttenberger
Being regarded as the new paradigm for Internet communication, Web Services have introduced a large number of new standards and technologies. Though founding on decades of networking experience, Web Services are not more resistant to security attacks than other open network systems. Quite the opposite is true: Web Services are exposed to attacks well-known from common Internet protocols and additionally to new kinds of attacks targeting Web Services in particular. Along with their severe impact, most of these attacks can be performed with minimum effort from the attacker's side. In this paper we present a list of vulnerabilities in the context of Web Services. To proof the practical relevance of the threats, we performed exemplary attacks on widespread Web Service implementations. Further, general countermeasures for prevention and mitigation of such attacks are discussed.
{"title":"SOA and Web Services: New Technologies, New Standards - New Attacks","authors":"Meiko Jensen, Nils Gruschka, Ralph Herkenhöner, N. Luttenberger","doi":"10.1109/ECOWS.2007.9","DOIUrl":"https://doi.org/10.1109/ECOWS.2007.9","url":null,"abstract":"Being regarded as the new paradigm for Internet communication, Web Services have introduced a large number of new standards and technologies. Though founding on decades of networking experience, Web Services are not more resistant to security attacks than other open network systems. Quite the opposite is true: Web Services are exposed to attacks well-known from common Internet protocols and additionally to new kinds of attacks targeting Web Services in particular. Along with their severe impact, most of these attacks can be performed with minimum effort from the attacker's side. In this paper we present a list of vulnerabilities in the context of Web Services. To proof the practical relevance of the threats, we performed exemplary attacks on widespread Web Service implementations. Further, general countermeasures for prevention and mitigation of such attacks are discussed.","PeriodicalId":436126,"journal":{"name":"Fifth European Conference on Web Services (ECOWS'07)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2007-11-26","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"128401427","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Service composition and service statefulness are key concepts in Web Service system programming. In this paper we present JOLIE, which is the full implementation of our formal calculus for service orchestration calledSOCK. JOLIE inherits all the formal semantics of SOCK and provides a C-like syntax which allows the programmer to design the service behaviour and the service deployment information separately. The service behaviour is exploited to design the interaction workflow and the computational functionalities of the service, whereas the service deployment information deals with service interface definition, statefulness and service session management. On the one hand, JOLIE offers a simple syntax for dealing with service composition and efficient multiple request processing; on the other hand, it is based on a formal semantics which offers a solid development base, along with the future possibility of creating automated tools for testing system properties such as deadlock freeness.
{"title":"Composing Services with JOLIE","authors":"F. Montesi, C. Guidi, G. Zavattaro","doi":"10.1109/ECOWS.2007.19","DOIUrl":"https://doi.org/10.1109/ECOWS.2007.19","url":null,"abstract":"Service composition and service statefulness are key concepts in Web Service system programming. In this paper we present JOLIE, which is the full implementation of our formal calculus for service orchestration calledSOCK. JOLIE inherits all the formal semantics of SOCK and provides a C-like syntax which allows the programmer to design the service behaviour and the service deployment information separately. The service behaviour is exploited to design the interaction workflow and the computational functionalities of the service, whereas the service deployment information deals with service interface definition, statefulness and service session management. On the one hand, JOLIE offers a simple syntax for dealing with service composition and efficient multiple request processing; on the other hand, it is based on a formal semantics which offers a solid development base, along with the future possibility of creating automated tools for testing system properties such as deadlock freeness.","PeriodicalId":436126,"journal":{"name":"Fifth European Conference on Web Services (ECOWS'07)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"123659299","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
京公网安备 11010802042870号
京ICP备2023020795号-1
扫码关注我们
求助内容:
应助结果提醒方式: