In recent years, the Service-Oriented Architecture (SOA) has emerged as a means to create loosely coupled distributed cross-organizational applications. Particularly in enterprise environments, service-based applications and business processes operate under specific constraints regarding reliability and security. Therefore, ensuring the correct behavior of service-based systems (SBS) is a key concern, both with regard to functional requirements (Does the SBS operate and process the data correctly?) and non-functional requirements, particularly security and access control (Does the SBS comply with the security constraints imposed by the business application?). In this work, we follow a rigid research approach towards these issues and focus on well-structured and sophisticated methodologies for providing reliable and secure operation of SBSs.
This project embraces two orthogonal efforts that are summarized under the terms TeCoS and SeCoS:
- TeCoS - Test Coverage for Service-based systems: In this project, we provide a framework for testing SBSs and analyse Verification and Validation (V&V) techniques for different dimensions (API, data flow, dynamic binding) and levels of granularity (single operation, service, service mashup, process-based service composition and choreography).
- SeCoS - Secure Collaboration in Service-based systems: This project is concerned with identity management and runtime enforcement of complex role-based access control (RBAC) constraints spanning multiple services in cross-organizational business processes.