Department of Computer Science
Laboratory for Software Design
Got a question?Got a question or comment? Contact us at (515) 294-6168 or hridesh@cs.iastate.edu. |
Reconciling Trust and Modularity Goals for Web ServicesBy Hridesh Rajan, Jia Tao, Steve Shaner, and Gary T. LeavensAbstractWeb services are distributed software components, typically decoupled from each other using interfaces with specified behaviors. However, such behavioral specifications are largely insufficient to demonstrate compliance with non-functional policies. For example, using just the behavioral description of a health care service that answers a patient's health related queries, the service provider cannot demonstrate whether the query is answered only by a doctor (and not by a secretary). Demonstrating compliance with such policies is important for satisfying governmental privacy regulations. In this work, we provide a language design that enables such reasoning, while hiding the service's source code. The key idea is to use greybox specifications to allow service providers to selectively hide and expose parts of their implementation. The overall reasoning problem is then reduced to two subproblems: whether the greybox specification satisfies the desired properties, and whether the service implementation conforms to the greybox specification. We solve the first problem by reducing it to a state exploration problem and the second problem by reducing it to a refinement problem. We formally study the interesting properties of this technique using a core language for distributed systems. Bibliographic Information
@Techreport{Rajan-Tao-Shaner-Leavens-08, Current version: PDF |
Laboratory for Software Design, Department of Computer Science, Iowa State University
116A Atanasoff Hall, Ames, IA, 50011-1040, USA
Voice: (515) 294-6168 . Fax: (515) 294-0258 . E-Mail: hridesh@cs.iastate.edu
Copyright © 2009, Iowa State University of Science and Technology. All rights reserved.