A2.D4.3 - Final set of S&D Patterns for workflows
This deliverable presents the final set of Security and Dependability (S&D) patterns at the level of workflow and services. This set of patterns is a revised and extended version of the initial set introduced in A2.D4.1 deliverable and its extension presented in A2.D4.2. The patterns are specifications of S&D solutions that have been developed to address S&D problems in a specific context, but can be reused in several application cases. The patterns proposed here are applicable to dynamic environments, like AmI environments, where the configuration of the system changes dynamically and the S&D requirements constantly evolve depending on the environmental changes.
A4.D4.2 - Integrated Mechanisms for Detecting Potential S&D Threats
This report presents the implemented mechanisms for detecting threats at run-time in the context of the SERENITY framework and their integration with other components of this framework, namely the SERENITY dynamic validation prototype (monitor) and the diagnosis prototype. The detection of security threats at runtime is based on two tools : diagnosis tool and threat detection tool. The A4.D4.2 deliverable includes also the implementation of the threat detection tool which can be obtained and used according to instructions given in this report.
A5.D2.4 - Provision of Patterns and Integration Schemes (Final version)
In order to give a first brief-but-yet-useful reference guide on how to create S&D Artefacts, a number of scenarios tightly related to security and dependability issues have been selected to be studied and represented in this deliverable. The result is the selection of six problems that can be solved by a combination of security and dependability solutions, which we will represent as Integration Schemes. The example set of S&D Artefacts goes from S&D Classes to S&D Patterns and Integration Schemes.
A5.D4.2 - End-user requirements specification language (final version)
This deliverable present all end-user languages specifications used in SERENITY. This description is based on the different end-users that make use of the SERENITY tools/methods. End-user languages address Serenity-aware application developers, S&D Solution programmers, and users of the Serenity Run-time Framework. Each end-user language aims to facilitate the use of Serenity to a kind of user. The greatest advantage of these languages is that they hide technical details of the Serenity Framework, improving the experience of the end-users, and allowing non S&D experts to profit from the results of the Serenity project.
A5.D5.1 - Design of Trust Mechanisms
This report presents the design of trust mechanisms applied in the SERENITY framework. It describes the importance of trust in software, and it introduces the two main infrastructures that support these trust mechanisms : PKI infrastructure and Evolution infrastructure. The document also explains the objectives of these trust mechanisms, followed by the definition of the use cases for both infrastructures, and their detailed description. Finally, a case study is presented where the application of the PKI infrastructure and Evolution infrastructure is described in a particular scenario.
A5.D5.2 - Prototype implementation of Trust Mechanisms
This report presents the prototype that implements the trust mechanisms described in the A5.D5.1 deliverable. The prototype is composed of two applications : the Transparency Agent (TA) and the Metamonitor (MM). This document describes all the menus and options of the prototype, as well as the steps to follow to install the prototype and run both, the TA and the MM.
A6.D4.5 - End-user Requirement Specification Tools
This deliverable provides a description of the End-User Requirements Specification Tools prototype. The deliverable is a prototype containing a set of tools and APIs, and their corresponding executables, distributed in a single compressed file. This document pretends to be an explanatory guide for using the prototype.
A7.D5.4 - Evaluation of SERENITY framework v2
This is the final evaluation of the SERENITY approach and integrated framework. The evaluation is performed by appropriate evaluation criteria, based on the characteristics and S&D requirements of the reference scenarios, the use of patterns, integration schemes, and the final versions of the SERENITY framework. As a natural consequence of the complexity of the SERENITY approach, tools and solutions that will be the outcomes of each project activity can be significantly different.
