1 / 11

Future research challenges in dependability - an industrial perspective from NESSI

Future research challenges in dependability - an industrial perspective from NESSI. Aljosa Pasic Atos Origin sae. IARIA workshop. Agenda. The need The answer The process The overview The challenges. Service Oriented World.

hollee-mcneil
Download Presentation

Future research challenges in dependability - an industrial perspective from NESSI

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Future research challenges in dependability - an industrial perspective fromNESSI Aljosa PasicAtos Origin sae IARIA workshop

  2. Agenda • The need • The answer • The process • The overview • The challenges CISTRANA workshop

  3. Service Oriented World Applications will need to utilise shared and co-owned services out of different domains of control that require to obey separate security policies and ask for diverse security and dependability qualities CISTRANA workshop

  4. Coming problems • For industry: Demand for Secure software is much higher than available security expertise • For research/technology: New complex scenarios (e.g. ambient intelligence) introduce security issues not addressed by conventional engineering processes • For market consultants: Security properties difficult to measure and it is also difficult to evaluate their “compositional effects” • For users: Security segmentation and market definitions are blurring: “service infrastructure” covers network infrastructure, perimeter, desktop, server and application security • For auditors and lawyers: Who is accountable and liable for what? • For society: Trust becomes a “key enabler” for service provision and use • For everyone: How much should we spend on security? CISTRANA workshop

  5. NESSI WG TSD NWG TSD • European Technology Platform: Networked European Software & service Initiative , NESSI NESSI SB SC CISTRANA workshop

  6. Objectives • Address the security and dependability requirements, challenges and priorities of emerging service oriented software applications • Bridge two communities: the software engineering (services, GRID) community and the security community • Support the NESSI vision and respond to security-related NESSI challenges • Address long-term research on trust, security and dependability in software and services CISTRANA workshop

  7. Mapping challenges, concepts and research topics Business dynamics Development environment Operational environment Decrease Gap between TSD need & TSD availability Trusted VO (FP6 – TrustCom) Security patterns (FP6 – Serenity) Trusted computing (FP6 - Open TC) Simulation & modeling (FP6-Deserec) Handle complexity Cross-domain scalability (FP6-GRIDTrust) Runtime monitoring (FP6 – Sensoria) Improve TSD Decision Making Risk based (FP6 – Fastmatch) Proof based (FP6 – Mobius) Privacy level based (FP6 – Prime) CISTRANA workshop

  8. What should it be? • Dynamic • Adaptable • Composable • Measurable • Predictive • Scalable • Persuasive • Open • Trustworthy • Interoperable • In TSD engineering and modelling • In TSD control and management • In TSD level assurance Approaches, properties and research challenges CISTRANA workshop

  9. NEXOF layered Functional View RequirementsCapture SLA@SOI Engineering tools offered asservices SOA4ALL Service consumers Interaction Services End user Interface ContextModelling RESERVOIR MASTER Consumer Adaptation Mapping users perspectives to business/Integration Context Handling EzWeb KnowledgeModelling SVNModeling BPM view Business Process Execution Information Services SVN LifecycleManagement Business ProcessModeling “System” Platform Composition Service Coordination Mediation SLA Negotiation Service Discovery Service Platform SBS/SBAModelling ServiceCommunication Service Service Registration LifecycleManagement ServiceExecution Service Modelling Reasoning Integration Services External Services Native Services AbstractedInfrastructure Infrastructure and DataAbstraction FormalLanguages Monitoring Infrastructure Modelling Infrastructure Data Management ResourcesManagement CISTRANA workshop

  10. WG subtopics • Privacy in services and service oriented architectures • Identity manamgement and identity as a service • Security policy langauges and mechanisms for services • Trust analysis, managment and monitoring • End-to-End (E2E) verification of trust, security, and dependability properties • Security and resilience engineering for services • Security of the Human Computer Interface • Dependable architectures • Scalable security • Security for event-based infrastructures CISTRANA workshop

  11. Enabling the next wave of services • aljosa.pasic@atosorigin.com CISTRANA workshop NETWORKED EUROPEAN SOFTWARE & SERVICE INITIATIVE

More Related