Secure Service Rating in Federated Software Systems Based on SOA

Secure Service Rating in Federated Software Systems Based on SOA

Nico Brehm (RepuGraph.com, Nordhausen, Germany) and Jorge Marx Gómez (University of Oldenburg, Germany)
DOI: 10.4018/978-1-60566-950-2.ch004

Abstract

The Service-oriented Architecture (SOA) paradigm mostly provides a suitable approach as to meet the requirements of flexible distributed software systems. Referring to the activities for the standardization of Web Service semantics or alternatively the introduction of intelligent search mechanisms future software architectures are supposed to integrate software components as remote services of foreign providers. If the authors assume that such services can be standardized e.g. as components of standard business application systems the vision of a service economy arises where services of the same type can be marketed by different providers. A service consumer on the other hand could choose the service he likes best at runtime. However, this vision is clouded by a multiplicity of risks which meet each other in the question of the specific reliability and trustworthiness of service providers in a certain context. Previous research activities picked up this problem whereby a lot of promising approaches and frameworks have been developed which concern the negotiation of trust within open network architectures like grids or peer-to-peer networks. Nevertheless, the genesis of the trust relationship between two network nodes has been neglected. This chapter presents an approach for the establishment of reputation in federated software systems where central network instances for the management of evaluations are avoided. In the authors’ approach the service providers are responsible for this task on their own. The authors present a novel security protocol for the message-based exchange of service evaluations that deters service providers from manipulating their own ratings.
Chapter Preview
Top

Background

In this paragraph we give definitions of the most important terms used in this chapter as well as a short discussion on the relationships between these terms. Starting from federated software systems and the role of SOA as structural design pattern we show how security and trust can be considered as part of those systems. Finally the term reputation as it is used in the presented concept will be substantiated in relation to the quality of services.

Complete Chapter List

Search this Book:
Reset