Test and Analysis of Web Services

Product Description

The service-oriented approach has become more and more popular, now allowing highly integrated and yet heterogeneous applications. Web services are the natural evolution of conventional middleware technologies to support Web-based and enterprise-level integration.

The highly dynamic characteristics of service-oriented applications means their validation is a continuous process that often runs in parallel with execution. It is not possible to clearly distinguish between the predeployment validation of a system and its use, nor is it possible to guarantee that the checks passed at a certain time will be passed at a later time and in the actual execution environment as well.

Baresi and Di Nitto have put together the first reference on all aspects of testing and validating service-oriented architectures, taking into account these inherent intricacies. The contributions by leading academic and industrial research groups are structured into four parts on: static analysis to acquire insight into how the system is supposed to work; testing techniques to sample its actual behavior; monitoring to probe its operational performance; and nonfunctional requirements like reliability and trust.

This monograph is an initial source of knowledge for researchers in both academia and industry in the field of service-oriented architecture validation and verification approaches. They will find a comprehensive survey of state-of-the-art approaches as well as techniques and tools to improve the quality of service-oriented applications.

Test and Analysis of Web Services

Web Services and Formal Methods: 4th International Workshop, WS-FM 2007, Brisbane, Australia, September 28-29, 2007, Proceedings

Product Description

This book constitutes the thoroughly refereed post-workshop proceedings of the 4th International Workshop on Web Services and Formal Methods, WS-FM 2007, held in Brisbane, Australia, in September 2007 in conjunction with the 5th International Conference on Business Process Management, BPM 2007.

The 9 revised full papers presented together with 2 invited papers were carefully reviewed and selected from 22 submissions. The papers address the application of formal methods and reasoning techniques to Web service technology, and formal theories inspired by developments in the field of Web services. The papers feature topics such as service-oriented analysis and design, formal approaches to enterprise modeling and business process modeling, model-driven development, testing, and analysis of Web services, Web services for business process management, security, performance and quality of Web services, Web service coordination and transactions, Web service ontologies and semantic description, goal-driven discovery and composition of Web services, complex event processing in service-oriented architectures, as well as semi-structured data management and XML technology.

Web Services and Formal Methods: 4th International Workshop, WS-FM 2007, Brisbane, Australia, September 28-29, 2007, Proceedings

Security for Web Services and Service-Oriented Architectures

Product Description

Web services based on the eXtensible Markup Language (XML), the Simple Object Access Protocol (SOAP), and related standards, and deployed in Service-Oriented Architectures (SOA), are the key to Web-based interoperability for applications within and across organizations. It is crucial that the security of services and their interactions with users is ensured if Web services technology is to live up to its promise. However, the very features that make it attractive – such as greater and ubiquitous access to data and other resources, dynamic application configuration and reconfiguration through workflows, and relative autonomy – conflict with conventional security models and mechanisms.

Elisa Bertino and her coauthors provide a comprehensive guide to security for Web services and SOA. They cover in detail all recent standards that address Web service security, including XML Encryption, XML Signature, WS-Security, and WS-SecureConversation, as well as recent research on access control for simple and conversation-based Web services, advanced digital identity management techniques, and access control for Web-based workflows. They explain how these implement means for identification, authentication, and authorization with respect to security aspects such as integrity, confidentiality, and availability.

This book will serve practitioners as a comprehensive critical reference on Web service standards, with illustrative examples and analyses of critical issues; researchers will use it as a state-of-the-art overview of ongoing research and innovative new directions; and graduate students will use it as a textbook on advanced topics in computer and system security.

Security for Web Services and Service-Oriented Architectures

Data Processing Has Changed Over Time

Data Processing has changed greatly over time. While one can track the beginnings of the modern analytical computer to Charles Babbage (1791-1871), we really saw the beginning of modern day information systems during World War II when they were used as code busters. After the war, few anticipated how much computers would affect our lives. Early on even IBM thought that there would only be a handful of companies that would need a computer.

In those days, computers were massive systems based on vacuum tubes and core memory. With the advent of the integrated circuit, computer architectures took a giant leap forward. The mainframe systems of the late 1980’s evolved into Client/Server applications of the early 1990’s. In parallel, the Internet grew from a few engineer and research systems to a World Wide network. It wasn’t until an Al Gore authored bill allowing commerce to be carried out over the Internet did things really start to change. Every business, every organization, had to carve out a space on “The Net.”

The ubiquitous nature of The Internet made it the perfect way for business to have a global reach while maintaining a local presence. Soon, application vendors were making Internet based applications. Today, solution providers are exploiting service oriented architectures and BPEL to provide more agile environments in which to do business.

Today, combining Internet access with massive, inexpensive compute power, data processing has been transformed from an ancillary function of accounting departments to mechanisms by which organizations can transform and enhance their internal processing while integrating their interactions with customers and suppliers.

The key to modern day data processing is not simply the automation of some manual process. Today, business realizes that data processing, information systems, change the very processes that are used to run the business. They not only do same things more efficiently, the do thins differently.

In the past an order was printed and sent to a supplier. The order was received and, if the item was in stock, it was shipped. Items not in stock were placed on back order. Today with Supply chain integration, the entire supply chain is integrated into one network. Warehouse management software notifies suppliers when stock levels drop and order are placed. The suppliers themselves use data mining and CRM (Customer Relationship Management) software to predict ordering patterns and anticipate customer needs.

Even how businesses interact with their customers has changed. In the past, businesses used mass marketing to appeal to the greatness number of possible customers. Today, we have mass customization where businesses on a group basis provide customized goods and services.

SOA Approach to Integration: XML, Web services, ESB, and BPEL in real-world SOA projects

Product Description

XML, Web services, ESB, and BPEL in real-world SOA projects

• Service-Oriented Architectures and SOA approach to integration
• SOA architectural design and domain-specific models
• Common Integration Patterns and how they can be best solved using Web services, BPEL and Enterprise Service Bus (ESB)
• Concepts behind SOA standards, security, transactions, and how to efficiently work with XML

In Detail

Integration of applications within a business and between different businesses is becoming more and more important. The needs for up-to-date information that is accessible from almost everywhere and developing e-business solutions — particularly business to business — require that developers find solutions for integrating diverse, heterogeneous applications, developed in different architectures and programming languages and on different platforms. They have to do this quickly and cost effectively, but still preserve the architecture and deliver robust solutions that are maintainable over time.

Integration is a difficult task. This book focuses on the SOA approach to integration of existing (legacy) applications and newly developed solutions, using modern technologies, particularly web services, XML, ESB, and BPEL. The book shows how to define SOA for integration, what integration patterns to use, which technologies to use, and how to best integrate existing applications with modern e-business solutions. It also shows how to develop web services and BPEL processes, and how to process and manage XML documents from the JEE and .NET platforms. Finally, it also explains how to integrate both platforms using web services and ESBs.

What you will learn from this book?

• How to design and develop SOA for integration
• Integration architecture patterns, principles, and best practices, with focus on the process-centric SOA approach
• The role of XML, web services, and ESBs in SOA for integration
• The role of service composition and BPEL in integration
• J2EE and .NET integration
• Why and how to use web services and XML for integration

Approach

After explaining the challenges, levels, and strategies of integration the book explains SOA, web services, and the Enterprise Services Bus before covering processing XML and web services on the .Net and JEE platforms in more detail. Then it covers BEPL and demonstrates service composition into business processes with a realistic, although simple example BPEL process. Finally it shows how ESB provides a concrete infrastructure for SOA.

Who this book is written for?

This book is for architects and senior developers who are responsible for setting up SOA for integration for applications within the enterprise (intra-enterprise integration) and applications across enterprises (inter-enterprise integration or B2B).

SOA Approach to Integration: XML, Web services, ESB, and BPEL in real-world SOA projects