Skip to main content
SpringerLink
Log in

A Framework for Trustworthy Service-Oriented Computing (Short Paper)

  • Conference paper
Information Systems Security (ICISS 2008)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 5352))

Included in the following conference series:

  • 1804 Accesses

Abstract

Service-oriented computing requires un-trusted and trusted software to simultaneously execute on the same hardware platform. Trusted software protects a service provider’s business model and must execute in a high assurance environment. Increasingly, hardware mechanisms are required to create high-assurance closed environments to host trusted software on open platforms. In current approaches, independent hardware vendors (IHVs) design and implement closed environments with proprietary interfaces specific to mobile phones, PCs and servers, forcing independent software vendors (ISVs) and service providers to develop non-portable software. In this paper, we present an abstract closed environment architecture that exposes its facilities via implementation-independent canonical interfaces. IHVs can use this architecture to implement platform-specific closed environments, while ISVs and service providers develop applications to the canonical interface and build portable trusted software. We discuss example implementations of our framework to demonstrate the feasibility of building scalable solutions to support trustworthy service-oriented computing.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. MacKenzie, C.M., et al.: Reference Model for Service Oriented Architecture 1.0. World Wide Web (October 2006), http://docs.oasis-open.org/soa-rm/v1.0/

  2. Dyer, J.G., et al.: Building the IBM 4758 Secure Coprocessor. IEEE Computer 34, 57–66 (2001)

    Article  Google Scholar 

  3. Suh, G.E., Clarke, D., Gassend, B., van Dijk, M., Devadas, S.: AEGIS: architecture for tamper-evident and tamper-resistant processing. In: ICS 2003: Proceedings of the 17th annual international conference on Supercomputing, pp. 160–171. ACM, New York (2003)

    Google Scholar 

  4. Lie, D., Thekkath, C., Mitchell, M., Lincoln, P., Boneh, D., Mitchell, J., Horowitz, M.: Architectural support for copy and tamper resistant software. SIGPLAN Not. 35(11), 168–177 (2000)

    Article  Google Scholar 

  5. Alves, T., Felton, D.: TrustZone: Integrated Hardware and Software Security. World Wide Web (July 2004), http://www.arm.com/pdfs/TZ_Whitepaper.pdf

  6. TCG: TCG mobile reference architecture specification version 1.0. World Wide Web (June 2007), https://www.trustedcomputinggroup.org/specs/mobilephone/tcg-mobilereference-architecture-1.0.pdf

  7. Ashkenazi, A., Hartley, D.: Securing Mobile Devices with Platform Independent Security Architecture. In: Embedded Systems Conference (April 2008)

    Google Scholar 

  8. Saltzer, J.H., Schroeder, M.D.: The Protection of Information in Computer Systems. Proc. of the IEEE 63(9), 1278–1308 (1975)

    Article  Google Scholar 

  9. Chinnici, R., et al.: Web Services Description Language (WSDL) Version 2.0 Part 1: Core Language. World Wide Web (June 2007), http://www.w3.org/TR/2007/REC-wsdl20-20070626

  10. Nadalin, A., et al.: WS-Trust 1.3. World Wide Web (March 2007), http://docs.oasis-open.org/ws-sx/ws-trust/200512/ws-trust-1.3-os.doc

  11. Ekberg, J., et al.: OnBoard Credentials Platform Design and Implementation. Technical Report NRC-TR-2008-001, Nokia Research Center (January 2008)

    Google Scholar 

  12. Liedtke, J.: On μ-kernel construction. In: Proc. 15th ACM Symposium on OS Principles, pp. 237–250 (December 1995)

    Google Scholar 

  13. Zhang, X., Aciicmez, O., Seifert, J.P.: A trusted mobile phone reference architecturevia secure kernel. In: STC 2007: Proceedings of the 2007 ACM workshop on Scalable trusted computing, pp. 7–14. ACM, New York (2007)

    Chapter  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Systems Research Center, Intel Technology India Pvt. Ltd., Bangalore, India

    Sasikanth Avancha

Authors
  1. Sasikanth Avancha
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Department of Computer Science, Stony Brook University, NY 11794-4400, Stony Brook, USA

    R. Sekar

  2. Department of Computer and Information Sciences, University of Hyderabad, 500 046, Hyderabad, India

    Arun K. Pujari

Rights and permissions

Reprints and permissions

Copyright information

© 2008 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Avancha, S. (2008). A Framework for Trustworthy Service-Oriented Computing (Short Paper). In: Sekar, R., Pujari, A.K. (eds) Information Systems Security. ICISS 2008. Lecture Notes in Computer Science, vol 5352. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-89862-7_9

Download citation

  • DOI: https://doi.org/10.1007/978-3-540-89862-7_9

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-89861-0

  • Online ISBN: 978-3-540-89862-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation