发布求助
文献互助 智能选刊 最新文献

2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)最新文献

筛选
英文 中文
Continuous Security Testing: A Case Study on Integrating Dynamic Security Testing Tools in CI/CD Pipelines 持续安全测试:在CI/CD管道中集成动态安全测试工具的案例研究
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00026
Thorsten Rangnau, Remco v. Buijtenen, F. Fransen, F. Turkmen
{"title":"Continuous Security Testing: A Case Study on Integrating Dynamic Security Testing Tools in CI/CD Pipelines","authors":"Thorsten Rangnau, Remco v. Buijtenen, F. Fransen, F. Turkmen","doi":"10.1109/EDOC49727.2020.00026","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00026","url":null,"abstract":"Continuous Integration (CI) and Continuous Delivery (CD) have become a well-known practice in DevOps to ensure fast delivery of new features. This is achieved by automatically testing and releasing new software versions, e.g. multiple times per day. However, classical security management techniques cannot keep up with this quick Software Development Life Cycle (SDLC). Nonetheless, guaranteeing high security quality of software systems has become increasingly important. The new trend of DevSecOps aims to integrate security techniques into existing DevOps practices. Especially, the automation of security testing is an important area of research in this trend. Although plenty of literature discusses security testing and CI/CD practices, only a few deal with both topics together. Additionally, most of the existing works cover only static code analysis and neglect dynamic testing methods. In this paper, we present an approach to integrate three automated dynamic testing techniques into a CI/CD pipeline and provide an empirical analysis of the introduced overhead. We then go on to identify unique research/technology challenges the DevSecOps communities will face and propose preliminary solutions to these challenges. Our findings will enable informed decisions when employing DevSecOps practices in agile enterprise applications engineering processes and enterprise security.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"156 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"123452933","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 21
Verifying Compliance of Process Compositions Through Certification of its Components 通过对其组件的认证来验证工艺组合的合规性
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00020
S. C. Tosatto, Guido Governatori, N. V. Beest
{"title":"Verifying Compliance of Process Compositions Through Certification of its Components","authors":"S. C. Tosatto, Guido Governatori, N. V. Beest","doi":"10.1109/EDOC49727.2020.00020","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00020","url":null,"abstract":"In this paper, we propose a methodology to verify the regulatory compliance of a composition of multiple interacting business process models. The proposed solution is based on providing a compliance certification for the components of the composition, and evaluating the compliance of the encompassing composition by aggregating the information shared by the certifications, going beyond existing techniques merely checking compliance on message flows. An advantage of adopting such methodology is that the computational details of the inner process models are not needed to verify compliance of the composition, so that companies can decide to not disclose such details while still being able to show that adopting their services would lead to compliant solutions in all possible scenarios.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"5 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"115811505","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
Goal Modelling Meets Service Choreography: A Graph Transformation Approach 目标建模满足服务编排:一种图转换方法
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00014
Michalis Bachras, K. Kontogiannis
{"title":"Goal Modelling Meets Service Choreography: A Graph Transformation Approach","authors":"Michalis Bachras, K. Kontogiannis","doi":"10.1109/EDOC49727.2020.00014","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00014","url":null,"abstract":"As microservices become one of the predominant architectural styles for distributed enterprise computing, there is a need to devise frameworks which allow for the goal driven composition and coordination of such highly granular service components. Even though a number of service composition and orchestration techniques have been proposed over the past decade, these do not take into account stakeholders’ intents as well as data, control, and temporal interdependencies between actions microservices can perform. In this paper, we present extensions to goal models with respect to data, logical and temporal dependencies exhibited between tasks and actions among microservices, and we propose a framework based on a graph transformation approach which, when applied to the extended goal models, can yield service invocation plans that achieve the desired requirements and constraints denoted by the specific goal models being considered.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"490 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"132195340","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
Checking, Generating, and Revising Safety Data Sheets using Globally Harmonized System Standards 使用全球统一系统标准检查、生成和修订安全数据表
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00028
Ashwini Patil, Sagar Sunkle, V. Kulkarni
{"title":"Checking, Generating, and Revising Safety Data Sheets using Globally Harmonized System Standards","authors":"Ashwini Patil, Sagar Sunkle, V. Kulkarni","doi":"10.1109/EDOC49727.2020.00028","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00028","url":null,"abstract":"Chemical manufacturers, importers, or distributors produce a Safety Data Sheet (SDS) for every chemical they use based on the Globally Harmonized System of Classification and Labelling of Chemicals(GHS). SDS is essential to adequately deliver information about the hazards of the particular chemical during its usage and handling. Authoring GHS-compliant SDS is very costly. Furthermore, revisions in GHS add, delete or modify the contents of an SDS. A pre-existing SDS therefore also needs to be adapted to changes in the GHS. Automation in the generation and checking of SDS per GHS would results in substantial savings in cost and effort.Additionally, if the SDS pre-exists, we ensure that all requisite label elements as per GHS are present in SDS, including precautionary statements, hazard statements, signal words, and pictograms. Our approach uses a versioned graph database, and image processing to generate, check, and keep an SDS compliant with the GHS. We demonstrate our approach with a pre-existing SDS of a chemical called DOWANOL™PM High Purity Grade, complying with GHS versions 7 and 8.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"36 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126907068","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 1
How Business Process Benchmarks Enable Organizations To Improve Performance 业务流程基准如何帮助组织提高绩效
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00032
Ünal Aksu, H. Reijers
{"title":"How Business Process Benchmarks Enable Organizations To Improve Performance","authors":"Ünal Aksu, H. Reijers","doi":"10.1109/EDOC49727.2020.00032","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00032","url":null,"abstract":"The recurring but mutually distinct ways of executing a business process are referred to as process variants. There are approaches available in the literature aimed at finding such process variants and determining how they differ from each other. However, organizations are more interested in understanding the effect of these differences in terms of the performance of a business process. In this context, we propose a novel approach to enable organizations to learn from each other through business process benchmarks. To do so, the approach bins organizations based on what extent they achieve their performance targets in relation to their Key Performance Indicators (KPIs). Within each bin, process variants are identified using trace clustering. Then, significant differences among process variants are determined and highlighted. These differences help organizations to improve the performance of their processes. We implemented our approach, evaluated its performance, and applied it in a case study.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"19 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"114507595","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 0
Pattern-based Modelling, Integration, and Deployment of Microservice Architectures 基于模式的微服务架构建模、集成和部署
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00015
Vladimir Yussupov, Uwe Breitenbücher, Christoph Krieger, F. Leymann, J. Soldani, Michael Wurster
{"title":"Pattern-based Modelling, Integration, and Deployment of Microservice Architectures","authors":"Vladimir Yussupov, Uwe Breitenbücher, Christoph Krieger, F. Leymann, J. Soldani, Michael Wurster","doi":"10.1109/EDOC49727.2020.00015","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00015","url":null,"abstract":"Microservice-based architectures (MSAs) gained momentum in industrial and research communities since finer-grained and more independent components foster reuse and reduce time to market. However, to come from the design of MSAs to running applications, substantial knowledge and technology-specific expertise in the deployment and integration of microservices is needed. In this paper, we propose a model-driven and pattern-based approach for composing microservices, which facilitates the transition from architectural models to running deployments. Using a unified modelling for MSAs, including both their integration based on Enterprise Integration Patterns (EIPs) and deployment aspects, our approach enables automatically generating the artefacts for deploying microservice compositions. This helps abstracting away the underlying infrastructure including container orchestration platforms and middleware layer for service integration. To validate the feasibility of our approach, we illustrate its prototypical implementation, with Kubernetes used as container orchestration system and OpenFaaS used for managing integration logic, and we present a case study.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"21 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"117029987","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 5
Decomposition-based Verification of Global Compliance in Process Choreographies 过程编排中基于分解的全局遵从性验证
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00019
W. Fdhila, S. Rinderle-Ma, David Knuplesch, M. Reichert
{"title":"Decomposition-based Verification of Global Compliance in Process Choreographies","authors":"W. Fdhila, S. Rinderle-Ma, David Knuplesch, M. Reichert","doi":"10.1109/EDOC49727.2020.00019","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00019","url":null,"abstract":"The verification of global compliance rules (GCR) in process choreographies (e.g., partner-spanning quality assurance in supply chains) is crucial and challenging due to the restricted visibility of the private processes of the collaborating partners. This paper provides a novel algorithm that decomposes global compliance rules into assertions that can be verified by the partners in a distributed way without revealing any private process details. The decomposition is based on transitivity properties of the underlying GCR specification. This work uses GCR based on antecedent and occurrence patterns and illustrates the transitivity properties based on their specification in first order predicate logic. It is formally shown that the original GCR can be reconstructed from the assertions, which ensures the viability of the approach. The algorithms are prototypically implemented and applied to several scenarios. The ability of checking global compliance constitutes a fundamental pillar of any approach implementing process choreographies with multiple partners.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"3 2","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"121111145","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 2
A Zone Reference Model for Enterprise-Grade Data Lake Management 企业级数据湖管理的区域参考模型
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00017
Corinna Giebler, Christoph Gröger, Eva Hoos, H. Schwarz, B. Mitschang
{"title":"A Zone Reference Model for Enterprise-Grade Data Lake Management","authors":"Corinna Giebler, Christoph Gröger, Eva Hoos, H. Schwarz, B. Mitschang","doi":"10.1109/EDOC49727.2020.00017","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00017","url":null,"abstract":"Data lakes are on the rise as data platforms for any kind of analytics, from data exploration to machine learning. They achieve the required flexibility by storing heterogeneous data in their raw format, and by avoiding the need for pre-defined use cases. However, storing only raw data is inefficient, as for many applications, the same data processing has to be applied repeatedly. To foster the reuse of processing steps, literature proposes to store data in different degrees of processing in addition to their raw format. To this end, data lakes are typically structured in zones. There exists various zone models, but they are varied, vague, and no assessments are given. It is unclear which of these zone models is applicable in a practical data lake implementation in enterprises. In this work, we assess existing zone models using requirements derived from multiple representative data analytics use cases of a real-world industry case. We identify the shortcomings of existing work and develop a zone reference model for enterprise-grade data lake management in a detailed manner. We assess the reference model’s applicability through a prototypical implementation for a real-world enterprise data lake use case. This assessment shows that the zone reference model meets the requirements relevant in practice and is ready for industry use.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"16 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"121670234","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 10
End-to-End Production Process Orchestration for Smart Printing Factories: An Application in Industry 智能印刷工厂端到端生产流程编排:在工业中的应用
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00027
Konstantinos Traganos, Irene T. P. Vanderfeesten, P. Grefen, Jonnro Erasmus, T. Gerrits, Wim Verhofstad
{"title":"End-to-End Production Process Orchestration for Smart Printing Factories: An Application in Industry","authors":"Konstantinos Traganos, Irene T. P. Vanderfeesten, P. Grefen, Jonnro Erasmus, T. Gerrits, Wim Verhofstad","doi":"10.1109/EDOC49727.2020.00027","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00027","url":null,"abstract":"Media production printing is following the Industry 4.0 era developments, towards the concept of smart printing factory. There, printers, post-processing machinery, media and product handling robots, automated guided vehicles and human operators shall be integrated in a seamless way for achieving higher production rates in a more efficient way, in a safe and ergonomic working environment. This integration of the various actors and the orchestration of their activities can be enabled by a process management system. This paper presents such a Printing Process Management System (PPMS), based on Business Process Management (BPM) technologies, that models and enacts end-to-end activities in a print shop. PPMS is a core information system of a cyber-physical system (CPS) for direct control of devices and humans in a smart production printing environment. It was implemented and demonstrated in the European EIT OEDIPUS 1 project for a major international printing technology provider, proving feasibility and giving insights into how BPM concepts and tools can be applied in smart printing factories.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"13 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"126450550","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 5
A User Acceptance Model for Robotic Process Automation 机器人过程自动化的用户接受模型
2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC) Pub Date : 2020-10-01 DOI: 10.1109/EDOC49727.2020.00021
Judith Wewerka, Sebastian Dax, M. Reichert
{"title":"A User Acceptance Model for Robotic Process Automation","authors":"Judith Wewerka, Sebastian Dax, M. Reichert","doi":"10.1109/EDOC49727.2020.00021","DOIUrl":"https://doi.org/10.1109/EDOC49727.2020.00021","url":null,"abstract":"Robotic Process Automation (RPA) is the rule-based automation of business processes by software bots mimicking human interactions to relieve employees from tedious work. However, any RPA initiative will not be successful if user acceptance is poor. So far, variables influencing RPA user acceptance have not been systematically investigated. The objective of this paper is to develop a model for assessing RPA user acceptance as well as variables influencing it. We derive this model using the Technology Acceptance Model (TAM) and extend TAM by RPA-specific variables. Our empirical validation indicates that the most important variables, which significantly influence perceived usefulness and perceived ease of use are facilitating conditions, result demonstrability, innovation joy, and social influence. These findings can be used to derive concrete recommendations for the design and implementation of RPA bots increasing acceptance of employees using the bots during their daily work. For the first time, an RPA user acceptance model is presented and validated contributing to an increased maturity of RPA projects.","PeriodicalId":409420,"journal":{"name":"2020 IEEE 24th International Enterprise Distributed Object Computing Conference (EDOC)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"134534612","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
引用次数: 11
首页 上一页 下一页 尾页
0
×
引用
GB/T 7714-2015
复制
MLA
复制
APA
复制
导出至
BibTeX EndNote RefMan NoteFirst NoteExpress
×
提示
您的信息不完整,为了账户安全,请先补充。
现在去补充
×
提示
您因"违规操作"
具体请查看互助需知
我知道了
×
提示
现在去查看 取消
×
提示
确定
请完成安全验证×
相关产品
×
本文献相关产品
联系我们:info@booksci.cn Book学术提供免费学术资源搜索服务,方便国内外学者检索中英文文献。致力于提供最便捷和优质的服务体验。 Copyright © 2023 布克学术 All rights reserved.
京ICP备2023020795号-1
ghs 京公网安备 11010802042870号
Book学术文献互助
Book学术文献互助群
群 号:481959085
Book学术官方微信