Abstract
Existing certification schemes implement continuous verification techniques aiming to prove non-functional (e.g., security) properties of software systems over time. These schemes provide different re-certification techniques for managing the certificate life cycle, though their strong assumptions make them ineffective against modern service-based distributed systems. Re-certification techniques are in fact built on static system models, which do not properly represent the system evolution, and on static detection of system changes, which results in an inaccurate planning of re-certification activities. In this paper, we propose a continuous certification scheme that departs from a static certificate life cycle management and provides a dynamic approach built on the modeling of the system behavior that reduces the amount of unnecessary re-certification. The quality of the proposed scheme is experimentally evaluated using an ad hoc dataset built on publicly-available datasets.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Anisetti, M., Ardagna, C.A., Damiani, E., El Ioini, N., Gaudenzi, F.: Modeling time, probability, and configuration constraints for continuous cloud service certification. In: COSE, vol. 72 (2018)
Anisetti, M., Ardagna, C.A., Bena, N.: Multi-dimensional certification of modern distributed systems. IEEE TSC 16(3), 1999–2012 (2023)
Anisetti, M., Ardagna, C.A., Damiani, E., El Ioini, N.: Trustworthy cloud certification: a model-based approach. In: Proceedings of SIMPDA 2014. Milan, Italy, November 2014
Anisetti, M., Ardagna, C.A., Damiani, E., Gaudenzi, F.: A semi-automatic and trustworthy scheme for continuous cloud service certification. IEEE TSC 13(1), 30–43 (2020)
Ardagna, C., Asal, R., Damiani, E., Vu, Q.: From security to assurance in the cloud: a survey. ACM CSUR 48(1), 1–50 (2015)
Baron, C., Louis, V.: Towards a continuous certification of safety-critical avionics software. Comput. Ind. 125, 103382 (2021)
Bogner, J., Wagner, S., Zimmermann, A.: Automatically measuring the maintainability of service- and microservice-based systems: a literature review. In: Proceedings of IWSM Mensura 2017. Gothenburg, Sweden, October 2017
Criteria, C.: Assurance continuity: CCRA requirements. Technical Report, Common Criteria (2021)
Egea, M., Mahbub, K., Spanoudakis, G., Vieira, M.R.: A certification framework for cloud security properties: the monitoring path. In: Proceedings of A4Cloud 2014, Malaga, Spain, June 2014
Faqeh, R., et al.: Towards dynamic dependable systems through evidence-based continuous certification. In: Proceedings of ISoLA 2020. Rhodes, Greece, October 2020
Gan, Y., et al.: An open-source benchmark suite for microservices and their hardware-software implications for cloud & edge systems. In: Proceedings of ASPLOS 2019. Providence, RI, USA, April 2019
Lins, S., Schneider, S., Sunyaev, A.: Trust is good, control is better: creating secure clouds by continuous auditing. IEEE TCC 6(3), 890–903 (2018)
Liu, F.T., Ting, K.M., Zhou, Z.H.: Isolation forest. In: Proceedings of IEEE ICDM 2008, Pisa, Italy, December 2008
Liu, F.T., Ting, K.M., Zhou, Z.H.: Isolation-based anomaly detection. ACM TKDD 6(1), 1–39 (2012)
Qiu, H., Banerjee, S.S., Jha, S., Kalbarczyk, Z.T., Iyer, R.K.: FIRM: an intelligent fine-grained resource management framework for SLO-oriented microservices. In: Proceedings of USENIX OSDI 2020. Virtual, November 2020
Qiu, H., Banerjee, S.S., Jha, S., Kalbarczyk, Z.T., Iyer, R.K.: Pre-processed tracing data for popular microservice benchmarks (2020)
Simons, A.J.H., Lefticaru, R.: A verified and optimized stream x-machine testing method, with application to cloud service certification. STVR 30(3), e1729 (2020)
Stephanow, P., Fallenbeck, N.: Towards continuous certification of infrastructure-as-a-service using low-level metrics. In: Proceedings of IEEE UIC-ATC-ScalCom. Beijing, China, August 2015
Stephanow, P., Srivastava, G., Schütte, J.: Test-based cloud service certification of opportunistic providers. In: Proceedings of IEEE CLOUD 2016. San Francisco, CA, USA, June-July 2016
Zhou, X., et al.: Benchmarking microservice systems for software engineering research. In: Proceedings of IEEE/ACM ICSE 2018. Gothenburg, Sweden, May, June 2018
Acknowledgements
The work was partially supported by the projects i) MUSA – Multilayered Urban Sustainability Action – project, funded by the European Union – NextGenerationEU, under the National Recovery and Resilience Plan (NRRP) Mission 4 Component 2 Investment Line 1.5: Strengthening of research structures and creation of R &D “innovation ecosystems”, set up of “territorial leaders in R &D” (CUP G43C22001370007, Code ECS00000037); ii) SERICS (PE00000014) under the NRRP MUR program funded by the EU – NextGenerationEU; iii) 1H-HUB and SOV-EDGE-HUB funded by Università degli Studi di Milano – PSR 2021/2022 – GSA – Linea 6; and iv) program “piano sostegno alla ricerca” funded by Università degli Studi di Milano.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2023 The Author(s), under exclusive license to Springer Nature Switzerland AG
About this paper
Cite this paper
Anisetti, M., Ardagna, C.A., Bena, N. (2023). Continuous Certification of Non-functional Properties Across System Changes. In: Monti, F., Rinderle-Ma, S., Ruiz Cortés, A., Zheng, Z., Mecella, M. (eds) Service-Oriented Computing. ICSOC 2023. Lecture Notes in Computer Science, vol 14419. Springer, Cham. https://doi.org/10.1007/978-3-031-48421-6_1
Download citation
DOI: https://doi.org/10.1007/978-3-031-48421-6_1
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-48420-9
Online ISBN: 978-3-031-48421-6
eBook Packages: Computer ScienceComputer Science (R0)