@book{AlnemrPolyvyanyyAbuJarouretal.2010, author = {Alnemr, Rehab and Polyvyanyy, Artem and AbuJarour, Mohammed and Appeltauer, Malte and Hildebrandt, Dieter and Thomas, Ivonne and Overdick, Hagen and Sch{\"o}bel, Michael and Uflacker, Matthias and Kluth, Stephan and Menzel, Michael and Schmidt, Alexander and Hagedorn, Benjamin and Pascalau, Emilian and Perscheid, Michael and Vogel, Thomas and Hentschel, Uwe and Feinbube, Frank and Kowark, Thomas and Tr{\"u}mper, Jonas and Vogel, Tobias and Becker, Basil}, title = {Proceedings of the 4th Ph.D. Retreat of the HPI Research School on Service-oriented Systems Engineering}, editor = {Meinel, Christoph and Plattner, Hasso and D{\"o}llner, J{\"u}rgen Roland Friedrich and Weske, Mathias and Polze, Andreas and Hirschfeld, Robert and Naumann, Felix and Giese, Holger}, publisher = {Universit{\"a}tsverlag Potsdam}, address = {Potsdam}, isbn = {978-3-86956-036-6}, url = {http://nbn-resolving.de/urn:nbn:de:kobv:517-opus-40838}, publisher = {Universit{\"a}t Potsdam}, pages = {Getr. Z{\"a}hlung}, year = {2010}, language = {en} } @book{MeinelThomasWarschofskyetal.2011, author = {Meinel, Christoph and Thomas, Ivonne and Warschofsky, Robert and Menzel, Michael and Junker, Holger and Schwenk, J{\"o}rg and Roth, Volker and Peters, Jan and Raepple, Martin and St{\"o}rtkuhl, Thomas and Quint, Bruno and Kleinhenz, Michael and Wagner, Daniel}, title = {SOA Security 2010 : Symposium f{\"u}r Sicherheit in Service-orientierten Architekturen ; 28. / 29. Oktober 2010 am Hasso-Plattner-Institut}, publisher = {Universit{\"a}tsverlag Potsdam}, address = {Potsdam}, isbn = {978-3-86956-110-3}, url = {http://nbn-resolving.de/urn:nbn:de:kobv:517-opus-49696}, publisher = {Universit{\"a}t Potsdam}, pages = {80}, year = {2011}, abstract = {"Forschung meets Business" - diese Kombination hat in den vergangenen Jahren immer wieder zu zahlreichen interessanten und fruchtbaren Diskussionen gef{\"u}hrt. Mit dem Symposium "Sicherheit in Service-orientierten Architekturen" f{\"u}hrt das Hasso-Plattner-Institut diese Tradition fort und lud alle Interessenten zu einem zweit{\"a}gigen Symposium nach Potsdam ein, um gemeinsam mit Fachvertretern aus der Forschung und Industrie {\"u}ber die aktuellen Entwicklungen im Bereich Sicherheit von SOA zu diskutieren. Die im Rahmen dieses Symposiums vorgestellten Beitr{\"a}ge fokussieren sich auf die Sicherheitsthemen "Sichere Digitale Identit{\"a}ten und Identit{\"a}tsmanagement", "Trust Management", "Modell-getriebene SOA-Sicherheit", "Datenschutz und Privatsph{\"a}re", "Sichere Enterprise SOA", und "Sichere IT-Infrastrukturen".}, language = {de} } @book{MenzelWehlmannHoenischetal.2009, author = {Menzel, Michael and Wehlmann, Kerstin and H{\"o}nisch, Martin and Bergemann, Susann and M{\"u}cklich, Franziska and Ruge, Jasmin and Sumida, Nanni and Bieder, Anja and Spreewald, Stefanie and Simon, J{\"o}rn and Freese, Anika and Bormann, Janine and Klinge, Henry and B{\"o}hme, Jan-Christoph and Fachini, Marion and Guß, Janine and Sch{\"u}ler, Susanne and Walter, Susanne and Kaden, Sandra and Kalus, Matthias and Berg, Ronald and Pape, Christine}, title = {Freiheit im Mittelalter am Beispiel der Stadt}, editor = {Klose, Dagmar and Ladewig, Marco}, publisher = {Universit{\"a}tsverlag Potsdam}, address = {Potsdam}, isbn = {978-3-940793-95-9}, url = {http://nbn-resolving.de/urn:nbn:de:kobv:517-opus-31417}, publisher = {Universit{\"a}t Potsdam}, pages = {327}, year = {2009}, abstract = {Kircht{\"u}rme und Zunfth{\"a}user, Marktpl{\"a}tze und enge - oft verdreckte - Gassen zeichnen unser modernes Bild der mittelalterlichen Stadt. Dieser „Ort" war Forum und Zentrum des mittelalterlichen Lebens, dessen Vielfalt und Komplexit{\"a}t sich f{\"u}r uns wie durch ein Brennglas beobachten l{\"a}sst. Dieser Band in der Reihe „Perspektiven historischen Denkens" thematisiert die „st{\"a}dtische Freiheit" unter geschichtsdidaktischen Aspekten. Junge Autorinnen und Autoren stellen hierin sch{\"u}lerzentrierte und narrative Lernarrangements vor, die mit quellengest{\"u}tzten Arbeitsmaterialien multiperspektivische Zug{\"a}nge zur Thematik „Freiheit am Beispiel der mittelalterlichen Stadt" (RLP Berlin-Brandenburg) erm{\"o}glichen. Vorweg gestellte Informationstexte gestatten den Lehrerinnen und Lehrern einen leichtverst{\"a}ndlich und fachlich fundierten Einblick in die Thematik und lohten das methodisch-didaktische Potential der Lernarrangements aus. Im sich anschließenden Materialteil k{\"o}nnen Sie als Lehrkraft aus dem breiten Text- und Bildfundus eine f{\"u}r ihren individuellen Unterricht angepasste Auswahl treffen und ihre Sch{\"u}ler f{\"u}r einen kurzweiligen und handlungsorientierten Unterricht begeistern.}, language = {de} } @phdthesis{Menzel2011, author = {Menzel, Michael}, title = {Model-driven security in service-oriented architectures : leveraging security patterns to transform high-level security requirements to technical policies}, url = {http://nbn-resolving.de/urn:nbn:de:kobv:517-opus-59058}, school = {Universit{\"a}t Potsdam}, year = {2011}, abstract = {Service-oriented Architectures (SOA) facilitate the provision and orchestration of business services to enable a faster adoption to changing business demands. Web Services provide a technical foundation to implement this paradigm on the basis of XML-messaging. However, the enhanced flexibility of message-based systems comes along with new threats and risks. To face these issues, a variety of security mechanisms and approaches is supported by the Web Service specifications. The usage of these security mechanisms and protocols is configured by stating security requirements in security policies. However, security policy languages for SOA are complex and difficult to create due to the expressiveness of these languages. To facilitate and simplify the creation of security policies, this thesis presents a model-driven approach that enables the generation of complex security policies on the basis of simple security intentions. SOA architects can specify these intentions in system design models and are not required to deal with complex technical security concepts. The approach introduced in this thesis enables the enhancement of any system design modelling languages - for example FMC or BPMN - with security modelling elements. The syntax, semantics, and notion of these elements is defined by our security modelling language SecureSOA. The metamodel of this language provides extension points to enable the integration into system design modelling languages. In particular, this thesis demonstrates the enhancement of FMC block diagrams with SecureSOA. To enable the model-driven generation of security policies, a domain-independent policy model is introduced in this thesis. This model provides an abstraction layer for security policies. Mappings are used to perform the transformation from our model to security policy languages. However, expert knowledge is required to generate instances of this model on the basis of simple security intentions. Appropriate security mechanisms, protocols and options must be chosen and combined to fulfil these security intentions. In this thesis, a formalised system of security patterns is used to represent this knowledge and to enable an automated transformation process. Moreover, a domain-specific language is introduced to state security patterns in an accessible way. On the basis of this language, a system of security configuration patterns is provided to transform security intentions related to data protection and identity management. The formal semantics of the security pattern language enable the verification of the transformation process introduced in this thesis and prove the correctness of the pattern application. Finally, our SOA Security LAB is presented that demonstrates the application of our model-driven approach to facilitate a dynamic creation, configuration, and execution of secure Web Service-based composed applications.}, language = {en} }