TY - GEN
T1 - A declarative approach to hardening services against QoS vulnerabilities
AU - Kwon, Young Woo
AU - Tilevich, Eli
PY - 2011
Y1 - 2011
N2 - The Quality of Service (QoS) in a distributed service-oriented application can be negatively affected by a variety of factors. Network volatility, hostile exploits, poor service management, all can prevent a service-oriented application from delivering its functionality to the user. This paper puts forward a novel approach to improving the reliability, security, and availability of service-oriented applications. To counter service vulnerabilities, a special service detects vulnerabilities as they emerge at runtime, and then hardens the applications by dynamically deploying special components. The novelty of our approach lies in using a declarative framework to express both vulnerabilities and hardening strategies in a domain-specific language, independent of the service infrastructure in place. Thus, our approach will make it possible to harden service-oriented applications in a disciplined and systematic fashion.
AB - The Quality of Service (QoS) in a distributed service-oriented application can be negatively affected by a variety of factors. Network volatility, hostile exploits, poor service management, all can prevent a service-oriented application from delivering its functionality to the user. This paper puts forward a novel approach to improving the reliability, security, and availability of service-oriented applications. To counter service vulnerabilities, a special service detects vulnerabilities as they emerge at runtime, and then hardens the applications by dynamically deploying special components. The novelty of our approach lies in using a declarative framework to express both vulnerabilities and hardening strategies in a domain-specific language, independent of the service infrastructure in place. Thus, our approach will make it possible to harden service-oriented applications in a disciplined and systematic fashion.
UR - http://www.scopus.com/inward/record.url?scp=80855164517&partnerID=8YFLogxK
U2 - 10.1109/MESOCA.2011.6049034
DO - 10.1109/MESOCA.2011.6049034
M3 - Conference contribution
AN - SCOPUS:80855164517
SN - 9781457706479
T3 - 2011 International Workshop on the Maintenance and Evolution of Service-Oriented and Cloud-Based Systems, MESOCA 2011
BT - 2011 International Workshop on the Maintenance and Evolution of Service-Oriented and Cloud-Based Systems, MESOCA 2011
T2 - 2011 International Workshop on the Maintenance and Evolution of Service-Oriented and Cloud-Based Systems, MESOCA 2011
Y2 - 26 September 2011 through 26 September 2011
ER -