Flexibility to adapt to changing business needs is a core requirement of today's enterprises. This is addressed by decomposing business processes into services that can be provided by scalable service-oriented architectures. Service-oriented architectures enable requesters to dynamically discover and use sub-services. Today, service selection does not consider security. This paper introduces the concept of Service-Oriented ASsurance (SOAS), in which services articulate their offered security assurances as well as assess the security of their sub-services. Products and services with well-specified and verifiable assurances provide guarantees about their security properties. Consequently, SOAS enables discovery of sub-services with the "Right" level of security. Applied to business installations, it enables enterprises to perform a well-founded security/price tradeoff for the services used in their business processes.
Did you find this white paper useful?
23 out of 50 users found this white paper useful
Related white papers
Defining, Modeling & Costing IT Services: Integrating Service Level, Configuration & Financial Management Processes
This paper will examine the fundamental steps for defining IT services, modeling IT services in a Configuration Management Database (CMDB) and developing service based IT costing models. These activities are...
Implementing Enterprise Resource Planning: Lessons Learned from the Front
This SAP white paper addresses several key questions surrounding Enterprise Resource Planning (ERP) implementations and the kinds of issues that can derail them. The paper offers five best practices for...
Touchpaper Helps Staffordshire County Council Realise New Vision for IT
Staffordshire County Council serves a local population of 800,000 people, employing more than 30,000 staff. The council's overall aim is to make Staffordshire an even better place to live, work,...
Trialware: Improving Customer Support and Help Desk Efficiencies with On-Demand Remote Support
Now you can sit at your desk and solve the toughest support problems, remotely. Sure, you can visit all your employees or customers and solve their support issues at their...
A Comprehensive View of High Availability Data Center Networking
This paper will explore the role the network plays in guaranteeing specific service levels and how it fits into the accepted methodology of data center availability metrics. This analysis seeks...
Automating License Management & IT Asset Tracking
With a dynamically changing, geographically dispersed workforce, and corporate governance requirements, manual processes to track IT assets can be unacceptably time consuming. Learn how to reduce corporate risk, reduce asset...
Knowledge Management and ITIL: Creating the Adaptive Organization
The Information Technology Infrastructure Library (ITIL) provides organizations with a framework for consistent IT Service Management (ITSM) over time. Knowledge Management principles complement and augment the ITIL framework, especially in...
