English
Related papers

Related papers: TulaFale: A Security Tool for Web Services

200 papers

An XML web service is, to a first approximation, an RPC service in which requests and responses are encoded in XML as SOAP envelopes, and transported over HTTP. We consider the problem of authenticating requests and responses at the…

Cryptography and Security · Computer Science 2007-05-23 Andrew D. Gordon , Riccardo Pucella

Social authentication has been suggested as a usable authentication ceremony to replace manual key authentication in messaging applications. Using social authentication, chat partners authenticate their peers using digital identities…

Cryptography and Security · Computer Science 2024-02-06 Felix Linker , David Basin

It is known that the exchange of information between web applications is done by means of the SOAP protocol. Securing this protocol is obviously a vital issue for any computer network. However, when it comes to cloud computing systems, the…

Cryptography and Security · Computer Science 2018-01-31 Hadi Razzaghi Kouchaksaraei , Alexander G. Chefranov

Web Services are web-based applications made available for web users or remote Web-based programs. In order to promote interoperability, they publish their interfaces in the so-called WSDL file and allow remote call over the network.…

Cryptography and Security · Computer Science 2008-12-23 Azzedine Benameur , Faisal Abdul Kadir , Serge Fenet

Now a days, a new family of web applications open applications, are emerging (e.g., Social Networking, News and Blogging). Generally, these open applications are non-confidential. The security needs of these applications are only…

Cryptography and Security · Computer Science 2013-06-10 Pankaj Choudhary , Rajendra Aaseri , Nirmal Roberts

TLAPS, the TLA+ proof system, is a platform for the development and mechanical verification of TLA+ proofs written in a declarative style requiring little background beyond elementary mathematics. The language supports hierarchical and…

Logic in Computer Science · Computer Science 2010-11-12 Kaustuv Chaudhuri , Damien Doligez , Leslie Lamport , Stephan Merz

Using an algorithm due to Safra for distributed termination detection as a running example, we present the main tools for verifying specifications written in TLA+. Examining their complementary strengths and weaknesses, we suggest a…

Logic in Computer Science · Computer Science 2022-11-15 Igor Konnov , Markus Kuppe , Stephan Merz

This document presents brief software specification of a secure file exchange system prototype involving mutual authentication of the users via their browser and the application server with PKI-based certificates as credentials, the use of…

Cryptography and Security · Computer Science 2011-01-25 Serguei A. Mokhov , Marc-André Laverdière , Ali Benssam , Djamel Benredjem

Companies have increasingly turned to application service providers (ASPs) or Software as a Service (SaaS) vendors to offer specialized web-based services that will cut costs and provide specific and focused applications to users. The…

Cryptography and Security · Computer Science 2012-08-27 Kelly D. Lewis andjames E. Lewis

Defects in requirements specifications can have severe consequences during the software development lifecycle. Some of them may result in poor product quality and/or time and budget overruns due to incorrect or missing quality…

Software Engineering · Computer Science 2020-09-09 Hugo Villamizar , Marcos Kalinowski , Alessandro Garcia , Daniel Mendez Fernández

Single Page Applications (SPAs) are different than hypertext-based web applications in that their workflow is not defined by explicit links, but rather implicitly by changes of their widgets' states. The workflow may hence be hard to track.…

Software Engineering · Computer Science 2020-05-13 Gefei Zhang

Defects in requirements specifications can have severe consequences during the software development lifecycle. Some of them result in overall project failure due to incorrect or missing quality characteristics such as security. There are…

Software Engineering · Computer Science 2019-06-28 H. Villamizar , A. A. Neto , M. Kalinowski , A. Garcia , D. Mendez Fernández

The security features of current digital services are mostly defined and dictated by the service provider (SP). A user can always decline to use a service whose terms do not fulfill the expected criteria, but in many cases, even a simple…

Cryptography and Security · Computer Science 2014-03-28 Takeshi Takahashi , Jarmo Harju , Joona Kannisto , Bilhanan Silverajan , Jarmo Harju , Shin'ichiro Matsuo

TAP, the Table Access Protocol, is a widely used Virtual Observatory specification allowing client software to interact with remote database services in a standardised way. This paper presents taplint, a tool for assessing the compliance of…

Instrumentation and Methods for Astrophysics · Physics 2021-12-16 Mark Taylor

We formalize automated analysis techniques for the validation of web services specified in BPEL and a RBAC variant tailored to BPEL. The idea is to use decidable fragments of first-order logic to describe the state space of a certain class…

Cryptography and Security · Computer Science 2010-11-13 Alberto Calvi , Silvio Ranise , Luca Viganò

We share observations and challenges from an ongoing effort to implement Explainable AI (XAI) in a domain-specific workflow for cybersecurity analysts. Specifically, we briefly describe a preliminary case study on the use of XAI for source…

Human-Computer Interaction · Computer Science 2024-08-12 Ashley Suh , Harry Li , Caitlin Kenney , Kenneth Alperin , Steven R. Gomez

We study the interaction of the programming construct "new", which generates statically scoped names, with communication via messages on channels. This interaction is crucial in security protocols, which are the main motivating examples for…

Cryptography and Security · Computer Science 2017-07-31 Martín Abadi , Bruno Blanchet , Cédric Fournet

We propose in this paper the Security Policy Language (SePL), which is a formal language for capturing and integrating distributed security policies. The syntax of SePL includes several operators for the integration of policies and it is…

Cryptography and Security · Computer Science 2020-05-12 Mohamed Mejri , Hamdi Yahyaoui

We present a prototype that implements a set of logical rules to prove the satisfiability for a class of specifications on XML documents. Specifications are given by means of constrains built on Boolean XPath patterns. The main goal of this…

Logic in Computer Science · Computer Science 2015-01-12 Javier Albors , Marisa Navarro

The development of complex software requires tools promoting fail-fast approaches, so that bugs and unexpected behavior can be quickly identified and fixed. Tools for data validation may save the day of computer programmers. In fact,…

Logic in Computer Science · Computer Science 2022-02-22 Mario Alviano , Carmine Dodaro , Arnel Zamayla
‹ Prev 1 2 3 10 Next ›