Aniketos: Ensuring Trustworthiness and Security in Service Composition Exploitation and Impact David Llewellyn-Jones Zeta Dooly Marina Egea González http://aniketos.eu Exploitation and Impact 1 6 th September 2012 Effectsplus Clustering Event, Padua, Italy
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Aniketos: Ensuring Trustworthiness and Security in Service Composition
Exploitation and Impact
David Llewellyn-JonesZeta Dooly
Marina Egea Gonzálezhttp://aniketos.eu
Exploitation and Impact
1
6th September 2012Effectsplus Clustering Event, Padua, Italy
� Runtime and environmental threats� Changing threats may cause user
alert or policy change
� Threat repository� Community list of relevant threats� Threats associated with possible
Effectsplus, Padua, Italy, 6 September 2012
� Threats associated with possible solutions
� Runtime threat monitoring� Based on information in threat
repository and policy
7
Deployment and Adaptation
� Service Composition Framework
� Compositions specified using BPMN
� Services replaced to maintain policy
Effectsplus, Padua, Italy, 6 September 2012
maintain policy
8
Socio-Technical Modelling
� Architectural approach for specifying� Service composition� Security policy� Trustworthy requirements� Threat requirements
Effectsplus, Padua, Italy, 6 September 2012
� Goal-oriented modelling
9
Workflow
� Incorporates comprehensive workflow� Relies on significant input
� From developers, providers and end-users� Commercial or community
� Ecosystem
Effectsplus, Padua, Italy, 6 September 2012
� Ecosystem� BPMN service compositions� ConSpec policy files� Trust management� The actual services
� Services may be ‘Aniketos compliant’
10
Exploitation and Impact
� Four fronts� Tutorials and
training� Demonstrations� Community
building and
TF 1T1
WP1: Requirements and architectural approach
WP
7: V
erifi
catio
n an
d en
d -use
r ev
alua
tion
WP8: Tutorials and training
WP9: Demonstration
OUTREACH
R&D
TF 2
TF 3TF 3
TF nTF n
WP
2: D
efin
e, e
stab
lish
and
mai
ntai
n tr
ust
WP
3: S
ecur
e co
mpo
sitio
n of
dyn
amic
ser
vice
s
WP
4: R
espo
nse
to
chan
ges
and
thre
ats
Effectsplus, Padua, Italy, 6 September 2012
building and standardisation
� Dissemination and exploitation
11
WP5: Platform construction
WP6: Realisation of industry case studies
WP
7: V
erifi
catio
n an
d en
d
WP12: Project management
WP11: Dissemination and Exploitation
WP10: Community building and standardization
WP
2: D
efin
e, e
stab
lish
and
mai
ntai
n tr
ust
WP
3: S
ecur
e co
mpo
sitio
n of
dyn
amic
ser
vice
s
WP
4: R
espo
nse
to
chan
ges
and
thre
ats
Tutorials and Training
� Led by SearchLab� Building up standardised
documentation� Standard templates for all prototype
deliverables� Automated document generation tools
Effectsplus, Padua, Italy, 6 September 2012
� Automated document generation tools
� Workshops and events� February 2011 – STS and S×C×T� July 2011 – STS Modelling Language� More planned
12
Demonstrations
� Led by Italtel� Trade shows and conferences� Demo events
� February 2012 – Internal Aniketos� May 2012 – Selex Elsag demo
Effectsplus, Padua, Italy, 6 September 2012
� May 2012 – Selex Elsag demo� July 2012 – Wind demonstration� July 2012 – SummerSOC� More planned
� Building software VMs
13
Community Building
� Led by TSSG� Aim to build communities
� Contribute to standardisation� Generate interest� Foster open source community
Effectsplus, Padua, Italy, 6 September 2012
� Foster open source community
� Targeting open source alone is risky� Requirement for external input� Capitalise on social networking� Github, YouTube, LinkedIn, Twitter, etc.
� Aim to combine both commercial and open source
14
Dissemination and Exploitation
� Led by ATOS� Publications� Case Studies
� Future telecom services� eGovernance: land buying� Air traffic service pool
Effectsplus, Padua, Italy, 6 September 2012
� Air traffic service pool
� Demos� Real-world deployment with project
partners
15
SESAR
Future Telecoms Scenario
The end user (Bob) owns a mobile device which is equipped with a GPS receiver and a presence enabled VoIP client when accessing the web portal of his TLC Operator.
The services involved are: a. WebShop for general electronic commerce access; b. StoreLocator for making users choose the store where to pick up items selected;
Bob accesses the WebShopapplication in order to purchase an electronic item he wishes.
Bob requests the help of an assistant by starting a click-to-call VoIP communication Converged SIP/HTTP
application
SIP servlets
Application Server Platform12
3
Effectsplus, Padua, Italy, 6 September 201216
The StoreLocator service gives users two options, 1) a manual selection of the pick-up stores that
can be selected from an offered list; 2) letting StoreLocator service propose a list of
closest stores.
He decides to purchase the item he was interested in
…to collect Bob’s current position information and to generate maps and addresses of the stores which are closer to Bob
Bob selects option 2) for automatic store localization. By doing so a service recomposition is started…
45
6 7Bob is finally asked to confirm his mail address (that was retrieved through the IdP) to inform him when he can pick-up the purchased item
Audience Reached
� Commercial Sector (ICT Industry)� Software developers and providers� Service architecture providers� Security Experts� ICT providers, IT vendors� Internet Service Providers, Cloud Providers� End-users from Safety and Security Critical Domains
Effectsplus, Padua, Italy, 6 September 2012
� End-users from Safety and Security Critical Domains
� Aniketos strategic partners � Other EU projects working in similar domain� EU technology platforms� Other research initiatives and big IT companies
� Academia � Scientists, Students (especially, Master and PhD students)
� European Commission, European Society
17
Industrial Audience
�
� Air Traffic Management experts, industries, practitioners and researchers (thanks to Aniketos ATC case study)
�
� Own customers� FinMeccanica companies
Effectsplus, Padua, Italy, 6 September 2012
� FinMeccanica companies� R&D managers and employees
�
� Academia� SAP internal stakeholders� external partners and SAP developers
�
� Employees, technical and marketing departments
18
Industrial Audience
�
� Internal research and innovation department� Atos internal stakeholders� Business development director� FI-WARE, ChoREOS, NESSoS, etc.� Inter industry-academia event co-organizer (MDSec @ MoDELS 2012)
Effectsplus, Padua, Italy, 6 September 2012
� Inter industry-academia event co-organizer (MDSec @ MoDELS 2012)� Joined new group addressing standardization of trustworthy, secure
composable services
�
� Greek public sector and government� Athens (previous) city council and other IT companies
19
Industrial Audience
�
� Software developers� Presented in several inter industry-academia scientific events
�
� Technical teams� Centre for evaluation of the security of information technology, software
Effectsplus, Padua, Italy, 6 September 2012
� Centre for evaluation of the security of information technology, software engineers
� Security experts, head of the security architecture unit, security consultants, technical and strategy managers
�
� Technical and marketing departments� Intranet community� Internet users
� Submitters or organisers for more than 40 events
� Organizers or PC members� Around 20 events
Papers
Effectsplus, Padua, Italy, 6 September 2012
� Papers� Over 40 papers on Aniketos research results (out of 80 submissions)
� Targeting industry� Participation in around 20 events� Including worldwide event reaching global SAP developer
community
21
Academic Partners
CNR LJMU PLUS SINTEF Tecnalia TSSG UNITN
Events participated/ organized
5 8 5 7 3 7 15
Participated Master, PhD programs,Seminars,
1 3 2 1 2 10 6
Effectsplus, Padua, Italy, 6 September 2012
Seminars, consultancy
1 3 2 1 2 10 6
Press Release 4 1 1 1
Platforms/clusters/ standardization
1 2
Papers 11 5 1 9 12 9
22
Promoting Website Visits
� Website intended to be main channel� Currently role less crucial� Mainly due to lack of technical and training material� Strategy therefore to publish more material
� Publish multimedia content when ready
Effectsplus, Padua, Italy, 6 September 2012
� Publish multimedia content when ready� Embedded videos being shown on web front page
� Embedded from Aniketos YouTube channel
� Deliverables� Demo material on success stories� Broadcast new achievements via social channels
� Aim to cross-link between project websites
23
Outreach Boost PlanKey ideas to boost outreach
Key message specification and communication
Effectsplus, Padua, Italy, 6 September 201224
Outreach Boost Plan
Key results
Effectsplus, Padua, Italy, 6 September 201225
Key outputs
Outreach Boost Plan
Effectsplus, Padua, Italy, 6 September 201226
Conclusion
� Four targeted areas for increasing impact� Tutorials and training� Demonstrations� Community building� Dissemination and exploitation
� Dissemination through outreach boost
Effectsplus, Padua, Italy, 6 September 2012
� Dissemination through outreach boost� Key message
� Targeted user groups
� Key results� Success story publication
� Key outputs� Code and business models
� Improved sharing
27
� Athens Technology Center SA� Atos Origin� DAEM S.A.� DeepBlue� SELEX ELSAG (ex Elsag Datamat)� Italtel
http://aniketos.eu
Effectsplus, Padua, Italy, 6 September 2012
� Italtel� Liverpool John Moores University� National Research Council of Italy� SAP� SEARCH Lab Ltd� Stiftelsen SINTEF� Tecnalia Research & Innovation� Thales� University of Salzburg� University of Trento� Waterford Institute of Technology� Wind Telecomunicazioni S.p.A.