Securing Integration of Cloud Services in Cross-Domain Distributed Environments

Bojan Suzic

doi:10.1145/2851613.2851622

Securing Integration of Cloud Services in Cross-Domain Distributed Environments

Bojan Suzic

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

Traditional cloud integration scenarios, as adopted by many organizations, assume business processes to be executed in a cross-domain context, connecting on-premise and cloud applications. The emerging model of cloud-based integration platforms extends these scenarios by transferring business process execution entirely to the cloud. Although this approach provides numerous benefits and opens a new range of opportunities, its adoption requires reconsideration of currently applied practices and their adjustment to a new perspective.

In this work, we analyze the existing approaches to cross-domain service composition based on cloud integration platforms. We particularly focus on the security of these approaches, considering currently dominant OAuth 2.0 web authorization protocol and emerging UMA protocol. For this purpose, we present a new tool that enables UMA support in Apache Camel integration framework. We then analyze and discuss the integration flows relying on both protocols. Finally, based on RMIAS framework, we provide a security assessment of both approaches, presenting an overview of issues and challenges for future work.

Original language	English
Title of host publication	Proceedings of the 31st Annual ACM Symposium on Applied Computing
Place of Publication	New York, NY, USA
Publisher	Association of Computing Machinery
Pages	398-405
Number of pages	8
ISBN (Print)	978-1-4503-3739-7
DOIs	https://doi.org/10.1145/2851613.2851622
Publication status	Published - 2016

Keywords

cloud computing
data security
integration platforms
service composition
web protocols
web authorization
xacml
oauth
service integration
cloud integration
distributed systems
network protocols

ASJC Scopus subject areas

Computer Networks and Communications
Information Systems
Computer Science (miscellaneous)

Fields of Expertise

Information, Communication & Computing

Treatment code (Nähere Zuordnung)

Application
Theoretical
Experimental

Access to Document

10.1145/2851613.2851622Licence: Unspecified

Securing Integration of Cloud Services in Cross-domain Distributed EnvironmentsAccepted author manuscript, 924 KBLicence: Other

http://doi.acm.org/10.1145/2851613.2851622

Securing Integration of Cloud Services in Cross-Domain Distributed Environments
Bojan Suzic (Speaker)
Oct 2016
Activity: Talk or presentation › Talk at conference or symposium › Science to science

Cite this

@inproceedings{709803a806554a08a05afb706f36a332,

title = "Securing Integration of Cloud Services in Cross-Domain Distributed Environments",

abstract = "Traditional cloud integration scenarios, as adopted by many organizations, assume business processes to be executed in a cross-domain context, connecting on-premise and cloud applications. The emerging model of cloud-based integration platforms extends these scenarios by transferring business process execution entirely to the cloud. Although this approach provides numerous benefits and opens a new range of opportunities, its adoption requires reconsideration of currently applied practices and their adjustment to a new perspective.In this work, we analyze the existing approaches to cross-domain service composition based on cloud integration platforms. We particularly focus on the security of these approaches, considering currently dominant OAuth 2.0 web authorization protocol and emerging UMA protocol. For this purpose, we present a new tool that enables UMA support in Apache Camel integration framework. We then analyze and discuss the integration flows relying on both protocols. Finally, based on RMIAS framework, we provide a security assessment of both approaches, presenting an overview of issues and challenges for future work.",

keywords = "cloud computing, data security, integration platforms, service composition, web protocols, web authorization, xacml, oauth, service integration, cloud integration, distributed systems, network protocols",

author = "Bojan Suzic",

note = "This work has been supported partially by the SUNFISH project (N.644666) funded by the European Commission H2020 Program.",

year = "2016",

doi = "10.1145/2851613.2851622",

language = "English",

isbn = "978-1-4503-3739-7",

pages = "398--405",

booktitle = "Proceedings of the 31st Annual ACM Symposium on Applied Computing",

publisher = "Association of Computing Machinery",

address = "United States",

}

TY - GEN

T1 - Securing Integration of Cloud Services in Cross-Domain Distributed Environments

AU - Suzic, Bojan

N1 - This work has been supported partially by the SUNFISH project (N.644666) funded by the European Commission H2020 Program.

PY - 2016

Y1 - 2016

N2 - Traditional cloud integration scenarios, as adopted by many organizations, assume business processes to be executed in a cross-domain context, connecting on-premise and cloud applications. The emerging model of cloud-based integration platforms extends these scenarios by transferring business process execution entirely to the cloud. Although this approach provides numerous benefits and opens a new range of opportunities, its adoption requires reconsideration of currently applied practices and their adjustment to a new perspective.In this work, we analyze the existing approaches to cross-domain service composition based on cloud integration platforms. We particularly focus on the security of these approaches, considering currently dominant OAuth 2.0 web authorization protocol and emerging UMA protocol. For this purpose, we present a new tool that enables UMA support in Apache Camel integration framework. We then analyze and discuss the integration flows relying on both protocols. Finally, based on RMIAS framework, we provide a security assessment of both approaches, presenting an overview of issues and challenges for future work.

AB - Traditional cloud integration scenarios, as adopted by many organizations, assume business processes to be executed in a cross-domain context, connecting on-premise and cloud applications. The emerging model of cloud-based integration platforms extends these scenarios by transferring business process execution entirely to the cloud. Although this approach provides numerous benefits and opens a new range of opportunities, its adoption requires reconsideration of currently applied practices and their adjustment to a new perspective.In this work, we analyze the existing approaches to cross-domain service composition based on cloud integration platforms. We particularly focus on the security of these approaches, considering currently dominant OAuth 2.0 web authorization protocol and emerging UMA protocol. For this purpose, we present a new tool that enables UMA support in Apache Camel integration framework. We then analyze and discuss the integration flows relying on both protocols. Finally, based on RMIAS framework, we provide a security assessment of both approaches, presenting an overview of issues and challenges for future work.

KW - cloud computing

KW - data security

KW - integration platforms

KW - service composition

KW - web protocols

KW - web authorization

KW - xacml

KW - oauth

KW - service integration

KW - cloud integration

KW - distributed systems

KW - network protocols

U2 - 10.1145/2851613.2851622

DO - 10.1145/2851613.2851622

M3 - Conference paper

SN - 978-1-4503-3739-7

SP - 398

EP - 405

BT - Proceedings of the 31st Annual ACM Symposium on Applied Computing

PB - Association of Computing Machinery

CY - New York, NY, USA

ER -

Securing Integration of Cloud Services in Cross-Domain Distributed Environments

Abstract

Keywords

ASJC Scopus subject areas

Fields of Expertise

Treatment code (Nähere Zuordnung)

Access to Document

Fingerprint

Activities

Securing Integration of Cloud Services in Cross-Domain Distributed Environments

Cite this