• Project DESEREC [PDF File]
• Project SERENITY [PDF File]
• Project ReSIST [PDF File]

• Introduction by Luca Durante, Session Chair
  [PDF File]
• Marco Aime - Modelling services for trust and security assurance
  [PDF File]
• György Csertán - Model Driven Development of Adaptive Structures
  [PDF File]
• Luca Durante - Formal methods for the analysis of wide distributed systems
  [PDF File]
• Pedro Soria-Rodriguez - Modelling of Security & Dependability Solutions
  [PDF File]
• Dr Jean-Christophe Pazzaglia - Discovery, the Final Frontier
  [PDF File]

Some of the solutions that these FP6 projects are working on are typically making assumptions that might (or might be not) true. Furthermore, they are usually validated and tested in controlled closed environments where threats and vulnerabilities, as well as number of possible service combinations, are limited.

Some of the research topics identified in the first ESFORS workshop, such as "Processes", "Security Engineering", "Formal Methods, Semantics, Patterns, Design Tools, Validation Testing" , "Dynamic (run and real time) issues, context, dependence, complexity" etc belong to this group.

Objective:
The objective of this session is to perform .gap analysis. based on what has been done, under which assumptions (e.g. limited scale or not considering network infrastructure elements), and what else do we need. It should cover both the design and operational [run-time] aspects of SW systems and services, but also system testing and assurance related aspects. The architectural part needs to consider here the link with networks and network infrastructures, but also with embedded systems.

Chair: Dr. Luca Durante (IEIIT - CNR, Italy)
Rapporteur: Jean Christophe Pazzaglia (SAP Research Center Sophia Antipolis, France)

• Introduction by Session Chair Antonio Maña - Scalable and adaptive ubiquitous service infrastructures
  [PDF File]
• David Llewellyn-Jones - Run-time Dynamic Security from a Ubiquitous Computing Perspective
  [PDF File]
• Dr Antonio Maña - Challenges for Security and Dependability in Ambient Intelligence Scenarios
  [PDF File]
• Antonio Muñoz - Trusted Computing & Protected Computing
  [PDF File]
• Carmelo Ragusa - TSD topics: security, dependability and performance
  [PDF File]

Some of the research topics identified in the first ESFORS workshop include virtualisation, trustworthy computing, trust and reputation engines, security as service, distributed authentication and authorisation services, but also issues not mentioned in the first workshop such as on demand security level (and TSD trade off mechanisms), hosting and outsourcing TSD, security process networks, event driven security etc.

Objective:
This would be forward looking type of session with visionary and roadmapping objectives. In essence, the basic objective of this session is obtaining a successful prediction and for this purpose .as if. methodology could be used. We will stimulate innovative thinking by introducing new ICT scenarios and elements with stronger limitations when attempting the .simulation. or .replication. of the outcomes from previous research.

Chair: Dr. Antonio Mana (University of Malaga, Spain)
Rapporteur: Aljosa Pasic (Atos Origin, Spain)

Rationale:

In the real world, decision making and investment in security is often a result of previous process, such as risk analysis, non-functional requirements, regulatory compliance etc. Building secure, yet dynamic business processes and business coalitions, should be also aligned with other issues such as business resilience or socio-economic aspects.

Some of the research topics identified in the first ESFORS workshop include alignment with Business Objectives, change management, standardisation and certification, interoperability, openness, the management of the security lifecycle, dynamic risk assessment and risk management, metrics, multidisciplinary approach, legal, socio-economic and socio-technical dimensions.

Objective:

In this session we look also on TSD environment and what we did wrong, what could have been done better or what changes have to be done in this environment. TSD is not standalone element nor does it have an objective in itself. This session should produce a list of recommendations of what further actions should complement technical work on secure services and systems.

Chair: Reijo Savola (VTT Technical Research Centre of Finland)
Rapporteur: Prof. Bernhard M. Haemmerli (ACRIS, Switzerland)

The "services" notion provides for a wide range of on-demand, scalable and adaptive functionality extending beyond the constraints of classical "systems". It also makes the user transparent to the details of the systems/infrastructures providing the services. However, the SoI level transparency/adaptability comes at the cost of ever increasing complexity of the underlying service interactions, and the infrastructures provisioning the services. Obviously, the utility of SoI's exists if they can provide stable services, resilient to either system, network or user level disruptions. SoI-resilience is not only a fundamental challenge but also an unavoidable one to make SoI's meaningful.

Objective:

The objectives of this session will cover (a) specification of the SoI operational space (the services, their interactions, the infrastructural aspects), and the related resilience considerations, (b) the mechanisms to provide for resilience in SoI (design-stage, operational-stage) and (c) measures of resilience and their validation.

Chair: Dr. Edgar Weippl (Secure Business Austria)
Rapporteur: Pedro Carvalho (University of Lisbon, Portugal)

Rationale:

Software and middleware increasingly determines the core functionality and the services offered by systems and Service oriented Infrastructures (SoI's). As the diversity and the underlying systems/SoI grow, it is the underlying SW/MW primitives that facilitate this growth. Unfortunately, to adapt to the dynamic growth of systems/SoI's, the SW/MW approaches are often reactive in nature, and with resilience as an add-on property. Our current SW engineering approaches to resilient SW/MW work well for discrete systems and applications. As large scale, adaptive functionality systems/SoI's are the future, and also operating in unpredictable environments, a paradigm shift in designing SW/MW is warranted! Especially the need to explicitly incorporate resilience into scalable, adaptive (for functionality, environment and threats) and distributed SW/MW design is needed. The need exists to develop theoretically well founded principles and practical techniques, methods and tools for engineering such future resilient software systems, middleware and services to help software designers and developers cope with the complexity of upcoming systems and SoI's.

Objective:

The session aims to promote new software and middleware paradigms. The intended coverage is for design and development methodologies, practices, techniques and tools which will promote a resilience-driven approach to the design, performance, scalability, extensibility and maintainability of the resulting systems, together with means of assessing these properties at run-time.
The session will: (a) review the state of the art in foresight-based architecting and design processes for engineering resilience into software systems, middleware and services; This includes examining complexity, dynamicity and context from different angles; in order to define characteristics of all resilience dimensions; and, considering the extent to which existing technology (e.g., trusted computing, virtualization) in system designs provides options to aid the attainment of these; (b) perform a gap analysis on the challenges facing practical deployment of new methods.

Chair: Prof. Peter Ryan (Newcastle University)
Rapporteur: Sandy Johnstone (Hewlett-Packard, UK)

• Luca Save - Session Introduction - Resilience in Business Processes
  [PDF File]
• Pedro Antunes - A Social-Technical Perspective Over Business Process Management and Resilience
  [PDF File]
• Gabriel López - Defining operational plans to provide dependability and security
  [PDF File]

This session is about governance and engineering at organisational level of resilient business-critical services, related business processes, and associated assets. In line with the other sessions, Resilience is interpreted as the ability of an organisation to perceive and cope with changes in the shape of risk induced by both internal and external events. The socio-technical nature of business organisation has a profound impact on how resilience can be achieved in business-critical services and processes. The specificity of human .components. (or .Liveware. as some authors refer to them) prevent from adopting at organisational level the traditional tools conceived for pure technical infrastructure.

When considering complex socio-technical system like large business organisations, performance variability of people, along with variability of business, customer risk and technological environment, prevent from obtaining an adequate predictability of possible future events required by traditional risk models. In such a kind of contexts threats could also emerge from combination of normal behaviours.

Resilience in business processes of organisations/enterprises, hence, requires both new conceptual tools and techniques and a shift towards a new resilient way of thinking.

Objective:

The objectives of the session are to investigate: (a) which are the currently available solutions/practices to govern shift of processes, strategies, and responsibilities required to improve resilience and (b) directions and priorities for future scientific investigations. and technological developments.

Chair: Luca Save (DeepBlue, Italy)
Rapporteur: Domenico Presenza (Engineering, Italy)