The partners of the CESSA research project will provide solutions for the evolution of secure SOAs by providing an aspect-oriented structuring and programming model that allows security functionalities to be modularized that cross administrative and technological domains. By means of security aspects and a new notion of aspect-aware service interfaces, CESSA will enable the synthesis of SOA-based applications that are correct by construction and will allow the formal analysis of security properties of SOAs. Furthermore, the partners will demonstrate that security aspects support the secure horizontal (i.e., orchestration and choreography of services) and vertical composition (i.e., service implementation) of real-world industrial SOAs in the context of (i) an extension of an enterprise information system, extension that is motivated by needs for evolution of software in the financial sector due to regulatory requirements, and (ii) the integration into a commercial SOA of embedded devices using customized virtual machines.
CESSA is a project supported by the ANR, the French national research organization (project id.: 09-SEGI-002-01).
| 29 Sep. 2011 | Deliverable published: D2.3 "Certification Infrastructure and Mechanisms" (Intermediate version) |
| 26 Sep. | Deliverable published: D1.3 "Language definition and aspect support - Extension of the Service Model for Security and Aspects" |
| June | Research article on adaptive security for services accepted at WSNSCM'11 |
| June | Article on adaptive service security for mobile systems accepted at the industry-oriented event Smart-Mobility'11 |
| 27 May | Deliverable published: D2.2 "Language definition for security specifications" |
| 15 Apr. | Research article on gray-box composition, aspects and invasive patterns published in the international journal IJCIS |
École des Mines de Nantes
Diana Allam, Tony Bourdier, Rémi Douence, Herve Grall, Ismael Mejía, Jean-Claude Royer, Mario Südholt (coordinator)
Eurecom
Davide Balzarotti, Matteo Dell-Amico, Engin Kirda, Yves Roudier (PI), Muhammad Sabir Idrees
IS2T
Gaëtan Harel, Jérôme Leroux, Fred Rivard (PI)
SAP
Jean Christophe Pazzaglia (PI), Anderson Santana de Oliveira, Gabriel Serme