Xu Ke,Wang YueXuan,Wu Cheng

DOI: https://doi.org/10.1007/s11432-007-0006-9

2007-01-01

Science in China Series F Information Sciences

Abstract:Ensuring the correctness and reliability of large-scale resource sharing and complex job processing is an important task for grid applications. From a formal method perspective, a grid service chain model based on state Pi calculus is proposed in this work as the theoretical foundation for the service composition and collaboration in grid. Following the idea of the Web Service Resource Framework (WSRF), state Pi calculus enables the life-cycle management of system states by associating the actions in the original Pi calculus with system states. Moreover, model checking technique is exploited for the design-time and run-time logical verification of grid service chain models. A grid application scenario of the dynamic analysis of material deformation structure is also provided to show the effectiveness of the proposed work.

Changqin Huang,Xizhe Wang,Dianhui Wang

DOI: https://doi.org/10.1016/j.ins.2018.08.042

IF: 8.1

2018-01-01

Information Sciences

Abstract:To ensure successful running of service composition in software-as-a-service (SaaS) applications under dynamic cloud computing environments, service semantic verification becomes essentially important and meaningful. Taking advantages from both semantic expression in dependence record types (DRT) and completeness of service description in session types (ST), this paper presents a novel method for service composition verification at semantic level. Based on the characteristics of DRT, an ontology approach is proposed to enrich DRTs semantic description and establish a set of subtyping rules to characterize relationships of transmitted messages among services. As a general service composition description and semantic verification method, message DRT extended multiparty session types (MDRT-MST) are then constructed. A theoretical justification on the main patterns of service composition models is given through the extended reduction rules. As a case study, an online payment system is implemented for evaluating the system performance in practice. Experimental results demonstrate the feasibility and effectiveness of the proposed method in service reduction and verification for the real-world SaaS applications.

M. Saqib Nawaz,Meng Sun

DOI: https://doi.org/10.1109/cbd.2018.00017

2018-01-01

Abstract:Cloud computing enables one to access applications through Internet, without explicitly installing them on one single computing device. Formal modeling and verification of cloud services and their composition is fundamental to guarantee the accurate working and availability of cloud applications. In this paper, we use the Prototype Verification System (PVS) for formal modeling and verification of cloud services. Cloud services are modeled in PVS with the combination of logical predicates that represent the relations among the timed data sequences being observed at its input and output ports. Furthermore, composition operators are modeled that can be used to combine different cloud services together to construct more complex services. With our approach, properties of cloud services and refinement relations between different cloud services can be formalized as goals and proved with the PVS proof assistant.

Meng Sun,Guirong Fu

DOI: https://doi.org/10.18293/seke2017-055

2017-01-01

Abstract:To support rigorous development of cloud applications, a formal model for understanding and reasoning about cloud services is needed.Unifying Theories of Programming (UTP) provide a formal semantic foundation for various expressive programming and specification languages.A key concept in UTP is design: the familiar pre / post-condition pair that describes a contract.In this paper we use UTP to provide a formal model for cloud computing, whereby cloud services are interpreted as designs in UTP.Refinement and equivalence relations between cloud services can be naturally established by implication between predicates.A family of composition operators that can be used to put different cloud services together to construct more complex services and applications are defined based on the design model for cloud services.On the other hand, dynamic reconfiguration of cloud applications can be dealt with in the context of the design model as well, by applying the reconfiguration rules on the design models for the corresponding applications.

Kunding Fang,Xiaohong Li,Jianye Hao,Zhiyong Feng

DOI: https://doi.org/10.1109/trustcom.2016.0148

2016-01-01

Abstract:Cloud computing, as a kind of internet-based computing, has to entrust data which are managed by external parties on remote servers. One of the critical security challenges on cloud computing is to ensure data security and privacy. In order to perform rigorous formal analysis for cloud-based applications, we use UML, an industry-adopted modeling language to build an abstraction of a system. In this paper, we extend class/profile diagram, sequence diagram and state diagram in UML 2.3 that contains sufficient information to model security protocols in cloud-based systems. Following that, a method is proposed to automatically translate UML models to pi calculus specification, which allows us to verify the data secrecy and confidentiality of security protocols using the existing protocol verifier - ProVerif. Our methodology is applied on ConfiChair, a security protocol in cloud computing system, to prove the effectiveness and feasibility of our approach.

Yongxiang Li,Xifan Yao

DOI: https://doi.org/10.1177/1687814018781287

2014-01-01

Information Technology Journal

Abstract:Cloud manufacturing is an emerging service-oriented model to solve existing problems in manufacturing. This study proposes a process calculus–based approach to formally model cloud manufacturing service composition that is composed of description model, interaction scenario model, and composition process formal model, in which the semantics of process calculus to describe the quality of service (QoS) information of service composition is extended, and an intelligent service composition method is put forward based on the extended process calculus. Then, a platform architecture for implementing the proposed approach is addressed. The integrated development environment for the platform is set up with selection of free software tools. Thus, a prototype of the platform is developed. Finally, automated guided vehicle processing service composition and the open integrated manufacturing system service composition are taken as examples to illustrate the application of the proposed service composition method. The main attributes of the formal models for the application cases are verified. Case study results show that the proposed service composition and formal verification method based on the extended process calculus is feasible. Compared with other approaches for service composition, the proposed intelligent service composition method meets the most requirements for service composition.

Chunling Hu,Guoqing Geng,Bixin Li,Chao Tang,Xiaofeng Wang

DOI: https://doi.org/10.1145/3316615.3316714

2019-01-01

Abstract:Cloud application is a kind of software implemented using cloud computing technology and deployed in the cloud environment. This paper focuses on guaranteeing the interaction correctness between cloud application and users. In general, the main methods to do this are testing and verification. But in the cloud environment, testing is costly and the operation is extremely difficult, while the verification can avoid these shortcomings, and be suitable for cloud application. In this paper, we use SoaML(Service-Oriented Architecture Modeling Language) to model cloud application, apply hierarchical automaton to formalize ServiceInterface of SoaML, and translate SeviceInterface into PROMELA according to the semantics of automaton; Meanwhile, describe the ServiceContract of SoaML using linear temporal logic (LTL). Both PROMELA and LTL formula are integrated into SPIN model checker for automatic verification of cloud application. Experiment shows that we can verify the correctness of cloud application effectively.

Xiaofei Zhang,Hui Liu,Bin Li,Xing Wang,Haiqiang Chen,Shizhong Wu

DOI: https://doi.org/10.1109/cloudcom.2010.86

2010-11-01

Abstract:The emergence and application of cloud computing can help users access to various computing resources and services more conveniently. However, it also brings forth many security challenges. This paper proposes the application oriented remote verification trust model, which is capable of adjusting the user's trust authorization verification contents according to the specific security requirements of different applications. The model also dynamically adjusts the users' trust value with the trust feedback mechanism to determine whether or not the requested resource or service should be provided, so as to guarantee the security of information resources. This paper provides a formal description of the basic components and trust properties of the model with a belief formula, and describes the framework for the implementation of the model.

Wenbo Zhou,Lei Liu,Shuai Lu,Peng Zhang

DOI: https://doi.org/10.1109/access.2019.2900473

IF: 3.9

2019-01-01

IEEE Access

Abstract:Cloud service provides a convenient pattern of delivery and management for the Internet-based resource sharing. Reliable resource provisioning is very important to the stability of cloud service systems. In order to guarantee the consistency of resource delivery in cloud service, we propose a method for modeling and verification of resource provisioning as a service in the cloud. First, the framework of resource provisioning as a service and the behaviors of its participants are presented. Then, client, service manager (including allocator, finish monitor, and time monitor), and resource service are modeled based on UPPAAL, respectively. Finally, we define some consistency properties that a service scenario needs to satisfy and formally verify whether our model satisfies these properties using the UPPAAL model checker. The results show that our model satisfies all the proposed properties, which demonstrates the rationality and trustworthiness of our model.

Li Yongxiang,Yao Xifan,Zhang Jie,Li Bin

DOI: https://doi.org/10.1109/ccdc.2013.6561422

2013-01-01

Abstract:To solve the problem of modeling and formally verifying the composition of cloud manufacturing services, a new modeling and formal verification approach based on Calculus for Orchestration of Web Service (COWS) combined with Unified Modeling Language (UML) was proposed. First UML activity diagram for Cloud Manufacturing service composition was built with MagicDraw software, and saved as an XML file. The XML file was translated into a COWS file via UML4SOA, and formally verified with COWS Model Checking program (CMC). Furthermore, a composite service about part processing was given. Activity diagram of the service composition was built, including milling service, drilling service, exception handling, event handling and compensation mechanism. Finally, the composition verification result showed that the proposed approach was feasible.

Tian,Yiming Zhang,Qiao Zhou,Ping Zhong

DOI: https://doi.org/10.1109/cit.2016.66

2016-01-01

Abstract:Model checking has been widely used in program verification and debugging. In this paper, we present ModelX, which makes the first step towards using formal methods to verify the design of large-scale cloud applications. Our basic idea is to model the high-level behavior of cloud applications in early design, and use the distributed model checker, SPIN, to verify whether the LTL (linear temporal logic) is satisfied. We apply the idea to 4 known failed system designs, two from Microsoft, one from Facebook, and one from Amazon, to replay the failures, which demonstrate the feasibility of our proposals.

Peng Wang,Ling Yang,Guo Wen Li

DOI: https://doi.org/10.1007/978-3-319-38904-2_16

2016-01-01

Abstract:To build different mobile cloud computing system (MCS) business applications, how to design open system architecture is essential. First, a service-oriented architecture is put forward. In this architecture, MCS components are expressed as the form of interoperable MCS services, which are combined to achieve complex business needs. Second, a formal method is proposed based on space-time (S-T) Pi-calculus, in order to verify validity of MCS service composition model. Finally, the case study shows that how to apply the model and method. The experiment result shows that they are feasible.

Li Bao,Weishi Zhang,Xiuguo Zhang

DOI: https://doi.org/10.1109/PDCAT.2006.52

2006-01-01

Abstract:Formal method is an effective way for modeling and verifying concurrent system. An important research field is to describe and verify Web services by formal method. Guaranteeing the validity of Web services composition is necessary for enhancing the value of this composite service. CCS is a kind of process algebra which can be used to model concurrent systems. Web services and their composition are described and modeled based on CCS in this paper. Rules about applying CCS to Web services are explained. Finally, a case study is carried and the validity of composition model is verified. Some important points in verification are discussed.

YL Shi,L Zhang,B Liu,FF Liu,LL Lin,BL Shi

DOI: https://doi.org/10.1109/cit.2005.10

2005-01-01

Abstract:Due to the promising features of Web services, their deployment and research are booming. Among them, various techniques for Web service composition have been developed. In this paper, we propose a new composition framework. We use automata to describe behaviors of Web services. Each of underlying Web services can interact with others through asynchronous messages passing according to its interaction role (client or server). All these messages are recorded by a virtual global observer and the observation result is just the composition conversation of Web services. We also develop a formal a top-down verification mechanism on this framework and provide some realizable conditions for a successful composition

Li Bao,Weishi Zhang,Xiuguo Zhang

DOI: https://doi.org/10.1109/ICNSC.2008.4525471

2008-01-01

Abstract:Formal method is an effective way for modeling and verifying software system. Describing and verifying Web services by formal method is an important research field. Guaranteeing the validity of Web services composition is necessary for enhancing the value of services. CCS is a kind of process algebra which can be used to model concurrent systems. Web services and their composition are described and verified based on CCS in this paper. Some differences among the CCS and other formal methods are discussed. Rules about applying CCS to Web services are explained. Finally, a demo is constructed and the validity of composition model is verified. Some important points in verification are discussed.

Ning Xi,Cong Sun,Jianfeng Ma,Yulong Shen

DOI: https://doi.org/10.1016/j.future.2014.12.009

IF: 7.307

2015-01-01

Future Generation Computer Systems

Abstract:Service clouds built on cloud infrastructures and service-oriented architecture provide users with a novel pattern of composing basic services to achieve complicated tasks. However, in multiple clouds environment, outsourcing data and applications pose a great challenge to information flow security for the composite services, since sensitive data may be leaked to unauthorized attackers during service composition. Although model checking has been considered as a promising approach to enforce information flow security precisely, its high complexity on modeling and the heavy cost on verification cause great burdens to the process of service composition. In this paper, we propose a distributed approach to composing services securely with information flow control. In our approach, each service component is first verified through model checking, and then a compositional verification procedure is executed to ensure the information flow security along with the composition of these services. The experimental results indicate that our approach can reduce the cost of verification compared with the global verification approach.

Xiaochen Liu,Chunhe Xia,Tianbo Wang,Li Zhong

DOI: https://doi.org/10.1109/bigdatacongress.2017.87

2017-01-01

Abstract:In the process of big data analysis and processing, a key concern blocking users from storing and processing their data in the cloud is their misgivings about the security and performance of cloud services. There is an urgent need to develop an approach that can help each cloud service provider (CSP) to demonstrate that their infrastructure and service behavior can meet the users' expectations. However, most of the prior research work focused on validating the process compliance of cloud service without an accurate description of the basic service behaviors, and could not measure the security capability. In this paper, we propose a novel approach to verify cloud service security conformance called CloudSec, which reduces the description gap between the cloud provider and customer through modeling cloud service behaviors (CloudBeh Model) and security SLA (SecSLA Model). These models enable a systematic integration of security constraints and service behavior into cloud while using UPPAAL to check the conformance, which can not only check CloudBeh performance metrics conformance, but also verify whether the security constraints meet the SecSLA. The proposed approach is validated through case study and experiments with a cloud storage service based on OpenStack, which illustrates CloudSec approach effectiveness and can be applied in real cloud scenarios.

Yuemin Li,Shenghui Zhao,Hailun Diao,Haibao Chen

DOI: https://doi.org/10.1109/nana.2016.75

2016-01-01

Abstract:In the platform of cloud computing, trusted cloud service and their composition service have paid much attention by researchers. While carrying out Service Composition, it will consider the functional and non-functional attributes. The credibility is an important service of non-functional attribute. Due to the disadvantage that current formal validation for service composition limits the non-functional attributes verification, this study proposes a method in which nonfunctional attributes are incorporated into the logic rule of inference with composition of the liner logic and Pi-calculus. Then using the example of travel agent system, the process of service composition can be verified by our method. So, it shows that non-functional attribute of composed service can be expressed by linear logic and Pi-calculus.

Junqing Chen,Linpeng Huang

DOI: https://doi.org/10.1145/1640206.1640225

2009-01-01

Abstract:Pervasive Computing plays an integral role in our daily life. Due to the mobility and resource limit of devices in pervasive computing environments, the design and implementation of service composition will be a more complex and challenging task. In this paper, an approach based on behavioral modeling and analysis techniques for modeling service composition is proposed. A service behavior model is represented as Concurrent Regular Expressions and then is modeled as a Labelled Transition System by transforming Concurrent Regular Expressions into Finite State Process notation. Verification of the service behavior against specified system properties, (i.e. behavior consistency, safety) is becoming more flexible and effective.

Tian Bai,Lin Zhang,Fei Wang,Tingyu Lin,Yingying Xiao

DOI: https://doi.org/10.1007/978-981-13-2853-4_15

2018-01-01

Abstract:In order to solve the large-scale model service composition problem in the cloud of simulation, this paper proposes a simulation model service composition framework which considers the characteristics of the cloud. This simulation model service composition framework adopts an ontology-based simulation model service description strategy (MSDS). Based on MSDS, the composite service composed of several model services with complex topology connection relationships is generated by the Input/Output semantic connection strength and simulation capability. A contrast experiment is conducted for the empirical verification.