SECTISSIMO: A Platform-Independent Framework for Security Services.

It is non-trivial to secure dynamically composed systems based on languageand technology-independent service components. One of the approaches to tackle the challenge is the use of powerful Security Modeling Frameworks based on tools to generate security executables. We propose the SECTISSIMO framework: a layered approach for the modeling of security-critical, serviceoriented systems. In SECTISSIMO the functional models are enriched with security extensions and transformed into executables using Abstract Security Protocols and Controls. Based on them, we generate Security Policies containing Authentication and Authorization Assertions to execute on target platform. On the target platform the Security Components, provide security functionality to enforce the generated policies. The components are integrated based on the principles of the Service Component Architecture (SCA) and provide interfaces to access the their functionality.