Efficient dynamic policy monitoring in service oriented architectures

Abstract

We focus on dynamic monitoring of security and privacy policies in Service Oriented Architectures (SOAs) based systems. In a service oriented system both the internal and the external services may easily interact with each other, which makes the establishment and the enforcement of the privacy policies and the rules across the systems increasingly challenging. We introduce efficient and flexible methods for auditing such systems by leveraging the middleware platform capabilities. The auditing methods allow for two different types of audits, the static audits and the dynamic audits. The static audits find out whether a process pattern that is defined by the audit has been executed in the system. The dynamic audits, however, find out on-the-fly whether any of the system policies are being violated as the service process flows are still in execution in the system. We also present the effectiveness of the dynamic monitoring that we have developed to support demanding requirements of the dynamic audits. © 2008 IEEE.