A Framework for Modelling Security Architectures in Services Ecosystems

Matthew Collinson, David Pym, Barry Taylor

Research output: Chapter in Book/Report/Conference proceedingChapter

Abstract

We develop a compositional framework for modelling security and business architectures based on rigorous underlying mathematical systems modelling technology. We explain the basic architectural model, which strictly separates declarative specification from operational implementation, and show architectures can interact by composition, substitution, and stacking. We illustrate these constructions using a running example based on airport security and an example based on (cloud-based) outsourcing, indicating how our approach can illustrate how security controls can fail or be circumvented in these cases. We explain our motivations from mathematical modelling and security economics, and conclude by indicating how to aim to develop a decision-support technology
Original languageEnglish
Title of host publicationService-Oriented and Cloud Computing
Subtitle of host publicationFirst European Conference, ESOCC 2012, Bertinoro, Italy, September 19-21, 2012. Proceedings
EditorsFlavio De Paoli, Ernesto Pimentel, Gianluigi Zavaratto
PublisherSpringer
Pages64-79
Number of pages15
Volume7592
ISBN (Electronic)978-3-642-33427-6
ISBN (Print)978-3-642-33426-9
DOIs
Publication statusPublished - 2012
EventFirst European Conference, ESOCC 2012 - Bertinoro, Italy
Duration: 19 Sep 201221 Sep 2012

Publication series

NameLecture Notes in Computer Science
PublisherSpringer
Volume7592
ISSN (Print)0302-9743

Conference

ConferenceFirst European Conference, ESOCC 2012
CountryItaly
CityBertinoro
Period19/09/1221/09/12

Fingerprint Dive into the research topics of 'A Framework for Modelling Security Architectures in Services Ecosystems'. Together they form a unique fingerprint.

Cite this