- 1. To identify S&D requirements at the workflow level ;
- 2. To specify S&D patterns in terms of the SERENITY pattern specification language ;
- 3. To provide tools to support the security engineer in the analysis of S&D requirements, the design of solutions and the verification of S&D patterns.
This activity specifies and validates Security and Dependability (S&D) solutions for dynamic and, possibly, ad-hoc systems operating in an open, volatile, and heterogeneous computing environment. The concepts of workflow and services define the abstraction layer which constitutes the focus area of this activity.
The main emphasis is on inter-organisational workflows and virtual organisations and the provision of S&D solutions for dynamic workflows that withstand the volatility of the available resources. These solutions are specified in terms of S&D patterns.
Furthermore, tools are to be developed to assist the security engineer in the S&D analysis, the design of solutions and the verification of S&D patterns. Through the verification process the security engineer will check that the pattern is "correct", i.e. solutions match requirements, and the pattern is properly specified. We aim for strict, though non-formal, semi-automated verification. Validation of the S&D patterns, on the other hand, shall be achieved through the employment of user scenarios in activity 7.
Associated WP
