Xu Ke,Wang YueXuan,Wu Cheng

DOI: https://doi.org/10.1007/s11432-007-0006-9

2007-01-01

Science in China Series F Information Sciences

Abstract:Ensuring the correctness and reliability of large-scale resource sharing and complex job processing is an important task for grid applications. From a formal method perspective, a grid service chain model based on state Pi calculus is proposed in this work as the theoretical foundation for the service composition and collaboration in grid. Following the idea of the Web Service Resource Framework (WSRF), state Pi calculus enables the life-cycle management of system states by associating the actions in the original Pi calculus with system states. Moreover, model checking technique is exploited for the design-time and run-time logical verification of grid service chain models. A grid application scenario of the dynamic analysis of material deformation structure is also provided to show the effectiveness of the proposed work.

Xiyue Zhang,Meng Sun

DOI: https://doi.org/10.1007/978-3-030-23381-5_1

2019-01-01

Abstract:Cloud applications have been rapidly evolving and gained more and more attention in the past decade. Formal modeling and verification of cloud services are necessarily needed to guarantee their correctness and reliability of complex cloud applications. In this paper, we present a formal framework for modeling and verification of cloud applications based on the SMT solver Z3. Simple cloud services are specified as the basis for the modeling of composition and more complex cloud services. Three different classes Service , Composition and Cloud indicating simple cloud services, composition patterns and composed cloud services are defined, which facilitates the further development of attributes and methods. We also propose an approach to check the refinement and equivalence relations between cloud services, in which counter examples can be automatically generated when the relation is not valid.

Hong Xia,Zengzhi Li

DOI: https://doi.org/10.1109/kam.2009.316

2009-01-01

Abstract:In order to ensure the correctness and reliability of Web services composition based on OWL-S, verify the interaction protocol of Web services. It is provided that three lay architecture. Composition service based on OWL-S, GA model is the middle model and the Promela model is the verification model, SPIN as a model validator. The OWL-S composition Web services transform a top-down conversation protocol process into a GA model, use WAST tool into Promela model, the SPIN tool analysis and verification structure and performance of composition services. This method is flexibility and scalability which provide a solution for Web services composition model verification.

Tian,Yiming Zhang,Qiao Zhou,Ping Zhong

DOI: https://doi.org/10.1109/cit.2016.66

2016-01-01

Abstract:Model checking has been widely used in program verification and debugging. In this paper, we present ModelX, which makes the first step towards using formal methods to verify the design of large-scale cloud applications. Our basic idea is to model the high-level behavior of cloud applications in early design, and use the distributed model checker, SPIN, to verify whether the LTL (linear temporal logic) is satisfied. We apply the idea to 4 known failed system designs, two from Microsoft, one from Facebook, and one from Amazon, to replay the failures, which demonstrate the feasibility of our proposals.

Xiaochen Liu,Chunhe Xia,Tianbo Wang,Li Zhong

DOI: https://doi.org/10.1109/bigdatacongress.2017.87

2017-01-01

Abstract:In the process of big data analysis and processing, a key concern blocking users from storing and processing their data in the cloud is their misgivings about the security and performance of cloud services. There is an urgent need to develop an approach that can help each cloud service provider (CSP) to demonstrate that their infrastructure and service behavior can meet the users' expectations. However, most of the prior research work focused on validating the process compliance of cloud service without an accurate description of the basic service behaviors, and could not measure the security capability. In this paper, we propose a novel approach to verify cloud service security conformance called CloudSec, which reduces the description gap between the cloud provider and customer through modeling cloud service behaviors (CloudBeh Model) and security SLA (SecSLA Model). These models enable a systematic integration of security constraints and service behavior into cloud while using UPPAAL to check the conformance, which can not only check CloudBeh performance metrics conformance, but also verify whether the security constraints meet the SecSLA. The proposed approach is validated through case study and experiments with a cloud storage service based on OpenStack, which illustrates CloudSec approach effectiveness and can be applied in real cloud scenarios.

TENG Xing-quan,LI Zeng-zhi

DOI: https://doi.org/10.3969/j.issn.1000-7180.2007.12.017

2007-01-01

Abstract:In order to ensure the correctness and reliability of Web services composition based on OWL-S,and verify the interaction protocol of Web services,we adopt a three-level architecture idea,use OWL-S to compose Web services,use a GA model as an intermediate representation,and use a Promela model as the verification model.We design and implement the translation from OWL-S Web services composition models to GA models,which are then translated into Promela models.Finally,we use SPIN to complete the verification.This method has good agility and expansibility because of the intermediate representation.It also preferably overcomes the challenges brought by the characters of Web Services.

Kan Luo,Siyuan Wang,An Wei,Wei Yu,Kai Hu

DOI: https://doi.org/10.5121/csit.2019.90209

2019-01-01

Abstract:Soft-as-a-Service (SaaS) is a software delivery model that contains composition, development and execution on cloud platforms. And massive SaaS applications need verifying before deployed. To get the verify results of a large quantity of applications in a tolerate time, verify algebra (VA) is used to cut down the number of combinations to be verified. VA is an effective way to acquire the verify statue by using previous results. In VA, the verify result is calculated without knowing the process of verification. In this way, the verification task can be distributed to servers and executed in any order. This paper proposes method called component disassembly tree to decompose a complex SaaS application. And designs a parallel verification framework in cloud environment. The Optimization of execution is discussed. The proposed parallel schema is simulated in MapReduce.

Lin Ye,Hongli Zhang,Jiantao Shi,Xiaojiang Du

DOI: https://doi.org/10.1109/GLOCOM.2012.6503207

2012-01-01

Abstract:In this paper we study the important issue of verifying Service Level Agreement (SLA) in a semi-trusted (or untrusted) cloud. Cloud computing services promise elastic computing and storage resources in a pay-as-you-go way. A SLA between a cloud service provider (CSP) and a user is a contract which specifies the resources and performances that the cloud should offer. However, the CSP has the incentive to cheat on SLA, e.g., providing users with less CPU and memory resources than that specified in the SLA, which allows the CSP to support more users and make more profits. A malicious CSP can disrupt the existing SLA monitoring/verification techniques by interfering the monitoring/measurement process. Therefore, we present a SLA verification framework that leverages a third party auditor (TPA). Under the TPA framework, we propose an effective testing algorithm that can detect SLA violations of physical memory size in virtual machine (VM). Using real experiments, we show that the algorithm can detect cloud cheating on VM memory size (i.e., SLA violations). Furthermore, our algorithm can defend various attacks from a malicious CSP, which tries to hide a SLA violation.

Wenbo Zhou,Lei Liu,Shuai Lu,Peng Zhang

DOI: https://doi.org/10.1109/access.2019.2900473

IF: 3.9

2019-01-01

IEEE Access

Abstract:Cloud service provides a convenient pattern of delivery and management for the Internet-based resource sharing. Reliable resource provisioning is very important to the stability of cloud service systems. In order to guarantee the consistency of resource delivery in cloud service, we propose a method for modeling and verification of resource provisioning as a service in the cloud. First, the framework of resource provisioning as a service and the behaviors of its participants are presented. Then, client, service manager (including allocator, finish monitor, and time monitor), and resource service are modeled based on UPPAAL, respectively. Finally, we define some consistency properties that a service scenario needs to satisfy and formally verify whether our model satisfies these properties using the UPPAAL model checker. The results show that our model satisfies all the proposed properties, which demonstrates the rationality and trustworthiness of our model.

Li Yongxiang,Yao Xifan,Zhang Jie,Li Bin

DOI: https://doi.org/10.1109/ccdc.2013.6561422

2013-01-01

Abstract:To solve the problem of modeling and formally verifying the composition of cloud manufacturing services, a new modeling and formal verification approach based on Calculus for Orchestration of Web Service (COWS) combined with Unified Modeling Language (UML) was proposed. First UML activity diagram for Cloud Manufacturing service composition was built with MagicDraw software, and saved as an XML file. The XML file was translated into a COWS file via UML4SOA, and formally verified with COWS Model Checking program (CMC). Furthermore, a composite service about part processing was given. Activity diagram of the service composition was built, including milling service, drilling service, exception handling, event handling and compensation mechanism. Finally, the composition verification result showed that the proposed approach was feasible.

Zhifeng Gu,Juanzi Li,Jie Tang,Bin Xu,Ruobo Huang

DOI: https://doi.org/10.1109/compsac.2007.235

2007-01-01

Abstract:This paper studies one of the standards about web service conversations, the WSCL specification. We propose a method to verify conversations in WSCL. In this method we first propose using a translator to convert WSCL documents into promela, the modeling language of the model checker SPIN. Then, we run SPIN to check the conversation model against the correctness properties specified by the designer. A toolkit for WSCL verification is introduced at the end of this paper.

Yue Xie,Dehui Du,Jing Liu,Zuohua Ding

DOI: https://doi.org/10.1109/COMPSAC.2009.171

2009-01-01

Abstract:Assuring the consistency between collaborative services is a challenge problem in service oriented architecture. In this paper, we propose an approach to verifying the consistency of collaborative services based upon model checking. We first introduce an Extended UML Sequence Diagram for modeling dynamic behavior of collaborative service combining with UML State Chart Diagram. And then we define Collaboration-Contracts and obtain the verification model from the dynamic behavior models. Finally, wean automatically verify the consistency of collaborative services in behavior models by using an integrated SPIN-binding modeling tool Trustable MDA we developed to, In addition, a user-friendly service simulator is provided to locate the position of inconsistency.

Xiaolie Ye,Lejian Liao

DOI: https://doi.org/10.4304/jsw.4.10.1160-1168

2009-01-01

Journal of Software

Abstract:SOAP-based c omplex interactions of multiple end points in Web Services mostly consist of sub-processes or sub-protocols, which are reused as modul es and need to comply with corresponding standards and proposals. However, the consistency of local and global properties of interactions is important for practical applications with high security requirement . Therefore, a method is proposed to formally describe composed interactions by the definition of basic and composed interaction model s for Web Services. Furthermore, the semantic of interactions, is presented as a path of transitions in Action-based Kripke Transition System, on which some properties , such as secrecy and authentication , are described and verified as formulae in Past Linear Temporal Logic . Then a scenario of composed interactions for Web Services is given and some formal properties corresponding to security are more effectively checked by our approach .

Xiaochen Liu,Chunhe Xia,Tianbo Wang,Li Zhong,Xiaojian Li

DOI: https://doi.org/10.1007/s11704-019-9130-0

IF: 2.6688

2020-01-01

Frontiers of Computer Science

Abstract:As cloud computing technology turning to mature, cloud services have become a trust-based service. Users’ distrust of the security and performance of cloud services will hinder the rapid deployment and development of cloud services. So cloud service providers (CSPs) urgently need a way to prove that the infrastructure and the behavior of cloud services they provided can be trusted. The challenge here is how to construct a novel framework that can effective verify the security conformance of cloud services, which focuses on fine-grained descriptions of cloud service behavior and security service level aggreements (SLAs). In this paper, we propose a novel approach to verify cloud service security conformance, which reduces the description gap between the CSP and users through modeling cloud service behavior and security SLA, these models enable a systematic integration of security constraints and service behavior into cloud while using UPPAAL to check the performance and security conformance. The proposed approach is validated through case study and experiments with real cloud service based on Open-Stack, which illustrates CloudSec approach effectiveness and can be applied on realistic cloud scenario.

Jianhua Li,Songqiao Chen,Lin Jian,Hongyu Zhang

DOI: https://doi.org/10.1109/TrustCom.2011.216

2011-01-01

Abstract:Web service is a key distributed computing technology to achieve "software as a service" (SaaS) in cloud computing. How to integrate various web services according to business processes correctly and efficiently, realize the seamless integration of services, and form enterprise level service processes with abundant functions has become an important problem. In this paper, we presented a new web services composition model and its verification algorithm based on interface automata. By extending interface automata, this model supports semantic descriptions of web services. We proposed the transformation rules and transformation algorithm between BPEL and the semantic service interface automata model. Furthermore, an interface automata composition algorithm was designed to achieve the concurrent composition of interface automata. In order to judge whether the service process generated satisfies the business function requirements, a verification algorithm was designed to validate the execution sequence of the concurrent composite interface automaton, and the simulation experiment showed that verification algorithm could be used to validate the consistency of the service process and the business process correctly and effectively.

Zuohua Ding,Mingyue Jiang,Jing Liu

DOI: https://doi.org/10.1109/ICIS.2009.212

2009-01-01

Abstract:Service Component Architecture (SCA) provides a language-independent way to define and compose service component. The SCA assembly model should be reliable. This target can be reached by translating a formal signature model and behavior model for SCA to Promela, and Promela specifications are then verified with the model checker SPIN. SCA complements some service composition languages (such as BPEL) for enabling the more convenient and efficient service-based development. Based on our method and by using IBM WID tool, we show how to build a reliable BPEL process.

ZhengDong Zhu,Ronggui Lan,Ruifang Ma,Yanping Chen

DOI: https://doi.org/10.1109/EBISS.2009.5137960

2009-01-01

Abstract:Describing and verifying OWL-S with the Unified Modeling Language (UML) cannot only improve the efficiency of developing semantic Web service, but also ensure the correctness of dynamic composition process; abstractly modeling semantic Web services with model-driven architecture (MDA) at a higher level is helpful for dynamically binding services. This paper proposes an effective approach to describe and compose semantic Web service with UML, a verification mechanism is imported to ensure the correctness of semantic Web service composition; class diagrams and use-case diagrams are used to model the static aspect of OWL-S, activity diagrams to model the behavior of an OWL-S composition process. In this paper, the transformation from UML models of semantic Web service composition to the model-checking language Promela was presented for verifying the correctness of Web service composition using automated verification tool SPIN.

Peng Wang,Ling Yang,Guo Wen Li

DOI: https://doi.org/10.1007/978-3-319-38904-2_16

2016-01-01

Abstract:To build different mobile cloud computing system (MCS) business applications, how to design open system architecture is essential. First, a service-oriented architecture is put forward. In this architecture, MCS components are expressed as the form of interoperable MCS services, which are combined to achieve complex business needs. Second, a formal method is proposed based on space-time (S-T) Pi-calculus, in order to verify validity of MCS service composition model. Finally, the case study shows that how to apply the model and method. The experiment result shows that they are feasible.

王晨,王红兵,许迅

DOI: https://doi.org/10.3969/j.issn.1001-3695.2008.12.080

2008-01-01

Abstract:OWL-S and BPEL4WS are two widely used services description language which applied in modeling and implementing service composition.In the real services composition,the verification of Web services process plays an important role.Through the verification,the paper proved that a control flow of the services composition could satisfy some important or expected properties,some key properties such as no deadlock,no infinite loop and so on;also the service provider may verify Web services process to ensure that the Web services which they provided were completely correct.However,little attention had been paid to the methods which verify these two description language.And proposed a verification method of Web services which used TLA to model the services process,and then used the technology,model checking to verify some key properties.Through experiments,proves that it has good effect and is a potential and useful method in real environment.

Yuemin Li,Shenghui Zhao,Hailun Diao,Haibao Chen

DOI: https://doi.org/10.1109/nana.2016.75

2016-01-01

Abstract:In the platform of cloud computing, trusted cloud service and their composition service have paid much attention by researchers. While carrying out Service Composition, it will consider the functional and non-functional attributes. The credibility is an important service of non-functional attribute. Due to the disadvantage that current formal validation for service composition limits the non-functional attributes verification, this study proposes a method in which nonfunctional attributes are incorporated into the logic rule of inference with composition of the liner logic and Pi-calculus. Then using the example of travel agent system, the process of service composition can be verified by our method. So, it shows that non-functional attribute of composed service can be expressed by linear logic and Pi-calculus.