Reliability and Security for Safety-Critical Service Compositions

Kevin Theuermann

doi:https://doi.org/10.1007/978-3-030-65610-2_3

Reliability and Security for Safety-Critical Service Compositions

Kevin Theuermann^*

^*Korrespondierende/r Autor/-in für diese Arbeit

Institut für Angewandte Informationsverarbeitung und Kommunikationstechnologie (7050)

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Service composition represents the combination of individual distributed services, which are operated by different organizations. A composite service may include security or safety-critical services, which could have a serious impact on individuals and thus, require correctness of generated outputs as a crucial property. For this reason, service composition systems must avoid a manipulation of critical services and have to guarantee high reliability of computed outputs as well as availability. Secure multiparty computation and verifiable secret sharing enables a privacy-preserving computation of service outputs jointly generated by several parties, which makes it possible to prevent a single point of failure for critical services and guarantees correctness of a generated output. In this work, we introduce a concept for privacy-preserving and reliable service compositions through the application of secure multiparty computation in combination with threshold signatures. Threshold signatures make it possible to define a maximum number of allowed unavailable actors, which do not participate in the mulitparty computation protocol. This mechanism enables a flexible definition of security or safety requirements for critical services. The feasibility of the proposed solution is demonstrated by an implemented proof-of-concept for a composite medical alert service.

Originalsprache	englisch
Titel	Information Systems Security - 16th International Conference, ICISS 2020, Proceedings
Untertitel	16th International Conference, ICISS 2020, Jammu, India, December 16–20, 2020, Proceedings
Redakteure/-innen	Salil Kanhere, Vishwas T Patil, Shamik Sural, Manoj S Gaur
Herausgeber (Verlag)	Springer, Cham
Seiten	45-65
Seitenumfang	21
ISBN (elektronisch)	978-3-030-65610-2
ISBN (Print)	978-3-030-65609-6
DOIs	https://doi.org/10.1007/978-3-030-65610-2_3
Publikationsstatus	Veröffentlicht - 6 Dez. 2020
Veranstaltung	16th International Conference on Information Systems Security: ICISS 2020 - Virtuell, Indien Dauer: 16 Dez. 2020 → 19 Dez. 2020

Publikationsreihe

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Band	12553 LNCS
ISSN (Print)	0302-9743
ISSN (elektronisch)	1611-3349

Konferenz

Konferenz	16th International Conference on Information Systems Security
Kurztitel	ICISS 2020
Land/Gebiet	Indien
Ort	Virtuell
Zeitraum	16/12/20 → 19/12/20

ASJC Scopus subject areas

Information systems
Theoretische Informatik
Informatik (insg.)

Fields of Expertise

Information, Communication & Computing

Treatment code (Nähere Zuordnung)

Application

Zugriff auf Dokument

https://doi.org/10.1007/978-3-030-65610-2_3

Andere Dateien und Links

http://www.scopus.com/inward/record.url?scp=85097830805&partnerID=8YFLogxK

Dieses zitieren

Theuermann, K. (2020). Reliability and Security for Safety-Critical Service Compositions. in S. Kanhere, V. T. Patil, S. Sural, & M. S. Gaur (Hrsg.), Information Systems Security - 16th International Conference, ICISS 2020, Proceedings: 16th International Conference, ICISS 2020, Jammu, India, December 16–20, 2020, Proceedings (S. 45-65). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Band 12553 LNCS). Springer, Cham. https://doi.org/10.1007/978-3-030-65610-2_3

Reliability and Security for Safety-Critical Service Compositions. / Theuermann, Kevin.

Information Systems Security - 16th International Conference, ICISS 2020, Proceedings: 16th International Conference, ICISS 2020, Jammu, India, December 16–20, 2020, Proceedings. Hrsg. / Salil Kanhere; Vishwas T Patil; Shamik Sural; Manoj S Gaur. Springer, Cham, 2020. S. 45-65 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Band 12553 LNCS).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Theuermann, K 2020, Reliability and Security for Safety-Critical Service Compositions. in S Kanhere, VT Patil, S Sural & MS Gaur (Hrsg.), Information Systems Security - 16th International Conference, ICISS 2020, Proceedings: 16th International Conference, ICISS 2020, Jammu, India, December 16–20, 2020, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), Bd. 12553 LNCS, Springer, Cham, S. 45-65, 16th International Conference on Information Systems Security, Virtuell, Indien, 16/12/20. https://doi.org/10.1007/978-3-030-65610-2_3

Theuermann K. Reliability and Security for Safety-Critical Service Compositions. in Kanhere S, Patil VT, Sural S, Gaur MS, Hrsg., Information Systems Security - 16th International Conference, ICISS 2020, Proceedings: 16th International Conference, ICISS 2020, Jammu, India, December 16–20, 2020, Proceedings. Springer, Cham. 2020. S. 45-65. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: https://doi.org/10.1007/978-3-030-65610-2_3

Theuermann, Kevin. / Reliability and Security for Safety-Critical Service Compositions. Information Systems Security - 16th International Conference, ICISS 2020, Proceedings: 16th International Conference, ICISS 2020, Jammu, India, December 16–20, 2020, Proceedings. Hrsg. / Salil Kanhere ; Vishwas T Patil ; Shamik Sural ; Manoj S Gaur. Springer, Cham, 2020. S. 45-65 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{79e0ce28039a43b39a77251499294673,

title = "Reliability and Security for Safety-Critical Service Compositions",

abstract = "Service composition represents the combination of individual distributed services, which are operated by different organizations. A composite service may include security or safety-critical services, which could have a serious impact on individuals and thus, require correctness of generated outputs as a crucial property. For this reason, service composition systems must avoid a manipulation of critical services and have to guarantee high reliability of computed outputs as well as availability. Secure multiparty computation and verifiable secret sharing enables a privacy-preserving computation of service outputs jointly generated by several parties, which makes it possible to prevent a single point of failure for critical services and guarantees correctness of a generated output. In this work, we introduce a concept for privacy-preserving and reliable service compositions through the application of secure multiparty computation in combination with threshold signatures. Threshold signatures make it possible to define a maximum number of allowed unavailable actors, which do not participate in the mulitparty computation protocol. This mechanism enables a flexible definition of security or safety requirements for critical services. The feasibility of the proposed solution is demonstrated by an implemented proof-of-concept for a composite medical alert service.",

keywords = "Reliability, Availability, service composition, Privacy, Safety",

author = "Kevin Theuermann",

year = "2020",

month = dec,

day = "6",

doi = "https://doi.org/10.1007/978-3-030-65610-2_3",

language = "English",

isbn = "978-3-030-65609-6",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer, Cham",

pages = "45--65",

editor = "Salil Kanhere and Patil, {Vishwas T} and Shamik Sural and Gaur, {Manoj S}",

booktitle = "Information Systems Security - 16th International Conference, ICISS 2020, Proceedings",

note = "16th International Conference on Information Systems Security : ICISS 2020, ICISS 2020 ; Conference date: 16-12-2020 Through 19-12-2020",

}

TY - GEN

T1 - Reliability and Security for Safety-Critical Service Compositions

AU - Theuermann, Kevin

PY - 2020/12/6

Y1 - 2020/12/6

N2 - Service composition represents the combination of individual distributed services, which are operated by different organizations. A composite service may include security or safety-critical services, which could have a serious impact on individuals and thus, require correctness of generated outputs as a crucial property. For this reason, service composition systems must avoid a manipulation of critical services and have to guarantee high reliability of computed outputs as well as availability. Secure multiparty computation and verifiable secret sharing enables a privacy-preserving computation of service outputs jointly generated by several parties, which makes it possible to prevent a single point of failure for critical services and guarantees correctness of a generated output. In this work, we introduce a concept for privacy-preserving and reliable service compositions through the application of secure multiparty computation in combination with threshold signatures. Threshold signatures make it possible to define a maximum number of allowed unavailable actors, which do not participate in the mulitparty computation protocol. This mechanism enables a flexible definition of security or safety requirements for critical services. The feasibility of the proposed solution is demonstrated by an implemented proof-of-concept for a composite medical alert service.

AB - Service composition represents the combination of individual distributed services, which are operated by different organizations. A composite service may include security or safety-critical services, which could have a serious impact on individuals and thus, require correctness of generated outputs as a crucial property. For this reason, service composition systems must avoid a manipulation of critical services and have to guarantee high reliability of computed outputs as well as availability. Secure multiparty computation and verifiable secret sharing enables a privacy-preserving computation of service outputs jointly generated by several parties, which makes it possible to prevent a single point of failure for critical services and guarantees correctness of a generated output. In this work, we introduce a concept for privacy-preserving and reliable service compositions through the application of secure multiparty computation in combination with threshold signatures. Threshold signatures make it possible to define a maximum number of allowed unavailable actors, which do not participate in the mulitparty computation protocol. This mechanism enables a flexible definition of security or safety requirements for critical services. The feasibility of the proposed solution is demonstrated by an implemented proof-of-concept for a composite medical alert service.

KW - Reliability

KW - Availability

KW - service composition

KW - Privacy

KW - Safety

UR - http://www.scopus.com/inward/record.url?scp=85097830805&partnerID=8YFLogxK

U2 - https://doi.org/10.1007/978-3-030-65610-2_3

DO - https://doi.org/10.1007/978-3-030-65610-2_3

M3 - Conference paper

SN - 978-3-030-65609-6

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 45

EP - 65

BT - Information Systems Security - 16th International Conference, ICISS 2020, Proceedings

A2 - Kanhere, Salil

A2 - Patil, Vishwas T

A2 - Sural, Shamik

A2 - Gaur, Manoj S

PB - Springer, Cham

T2 - 16th International Conference on Information Systems Security

Y2 - 16 December 2020 through 19 December 2020

ER -

Reliability and Security for Safety-Critical Service Compositions

Abstract

Publikationsreihe

Konferenz

ASJC Scopus subject areas

Fields of Expertise

Treatment code (Nähere Zuordnung)

Zugriff auf Dokument

Andere Dateien und Links

Fingerprint

Dieses zitieren