本文選題：Web服務組合 + BPEL安全��； 參考：《北京郵電大學》2014年碩士論文

【摘要】：隨著云計算和Web服務技術的持續(xù)升溫,Web服務組合也逐漸成為業(yè)界關注的重點。Web服務組合是一系列相互獨立的Web服務構件的聚集,是將多個Web服務進行組合創(chuàng)建而形成的新的業(yè)務流程。BPEL是一種基于XML的業(yè)務流程描述語言,用于描述Web服務組合業(yè)務流程內部各Web服務構件之間的相互邏輯關系。BPEL可以把各個獨立的Web服務通過邏輯控制結構來進行有機組合,讓它們共同協(xié)作完成復雜的商業(yè)邏輯,實現(xiàn)特定的功能。 BPEL業(yè)務流程具有松耦合性,其在執(zhí)行過程中所調用的Web服務構件大部分都是分布于云上的獨立功能實體,因此業(yè)務開發(fā)人員對這些服務構件并沒有實際的控制權,更無法預見BPEL業(yè)務流程在執(zhí)行過程中可能遇到的異常和錯誤。此外,復雜多變的網(wǎng)絡通信狀況以及BPEL流程的邏輯缺陷都有可能導致其在執(zhí)行時出現(xiàn)異常,這些錯誤在設計階段往往無法檢測出來,只有當BPEL流程真正部署到引擎中并執(zhí)行時才會發(fā)現(xiàn),而目前主流的BPEL引擎針對BPEL業(yè)務流程的執(zhí)行異常并沒有有效的檢測和監(jiān)控機制,這就為整個BPEL引擎埋下了安全隱患。 本文設計并實現(xiàn)了一種面向BPEL的業(yè)務安全執(zhí)行環(huán)境,該業(yè)務安全執(zhí)行環(huán)境將靜態(tài)檢測和動態(tài)監(jiān)控相結合,通過業(yè)務部署的靜態(tài)檢測、實例狀態(tài)的動態(tài)監(jiān)控和流程信息的動態(tài)監(jiān)控,及時發(fā)現(xiàn)BPEL引擎中存在安全威脅的流程和實例,并作出預警和控制動作,實時保證整個執(zhí)行環(huán)境的安全穩(wěn)定。此外,為了適應云計算時代分布式部署的架構,業(yè)務安全執(zhí)行環(huán)境采用Spring框架進行構建,既可以內嵌BPEL引擎實現(xiàn)本地一對一的監(jiān)控,也可以通過配置安全策略文件實現(xiàn)一對多的分布式監(jiān)控,具有良好的靈活性和擴展性。 本文首先闡述了業(yè)務安全執(zhí)行環(huán)境提出的背景和意義,并針對其所涉及的相關技術進行了簡單介紹。接著從系統(tǒng)整體目標和典型業(yè)務場景出發(fā),進行了需求分析和關鍵問題的研究。根據(jù)分析和研究的結論,對業(yè)務安全執(zhí)行環(huán)境的整體架構進行了設計,并重點闡述了關鍵模塊和算法的實現(xiàn)。最后搭建原型系統(tǒng)進行測試,驗證了業(yè)務安全執(zhí)行環(huán)境的有效性和可靠性,并指出了需要進一步研究和完善的地方。
[Abstract]:With the continuous warming of cloud computing and Web services technology, the composition of web services has gradually become the focus of the industry. The composition of web services is a collection of independent Web service components.A new business process. BPEL is a business process description language based on XML, which is a combination of multiple Web services.It is used to describe the logical relationship among the Web service components within the Web services composition business process. BPEL can combine each independent Web service through the logical control structure to make them work together to complete the complex business logic.Implement specific functions.BPEL business processes are loosely coupled, and most of the Web service artifacts invoked during execution are independent functional entities distributed in the cloud, so business developers have no actual control over these service components.It is also impossible to foresee the exceptions and errors that BPEL business processes may encounter during execution.In addition, complex and changeable network communication conditions and logical flaws in BPEL processes can lead to exceptions at execution, which are often not detected at design time.Only when the BPEL process is deployed to the engine and executed can it be found that the current mainstream BPEL engine does not have an effective detection and monitoring mechanism for the execution exception of the BPEL business process which has laid a security hazard for the whole BPEL engine.In this paper, we design and implement a service security execution environment for BPEL, which combines static detection with dynamic monitoring.The dynamic monitoring of instance state and the dynamic monitoring of process information can detect the process and instance of security threat in the BPEL engine in time, and make early warning and control actions to ensure the security and stability of the whole execution environment in real time.In addition, in order to adapt to the distributed deployment architecture in the cloud computing era, the business security execution environment is constructed with Spring framework, which can be built into BPEL engine to realize local one-to-one monitoring.One-to-many distributed monitoring can also be implemented by configuring security policy files with good flexibility and extensibility.In this paper, the background and significance of business security execution environment are introduced, and the related technologies are briefly introduced.Then, the requirement analysis and the research of key problems are carried out on the basis of the overall goal and the typical business scenario of the system.According to the conclusion of the analysis and research, the overall architecture of the business security execution environment is designed, and the implementation of the key modules and algorithms is emphasized.Finally, a prototype system is built for testing, which verifies the validity and reliability of the business security execution environment, and points out that further research and improvement are needed.
【學位授予單位】：北京郵電大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP393.09

【參考文獻】

相關期刊論文 前3條

1 張華;王茜;;面向服務工作流補償機制的研究與實現(xiàn)[J];東南大學學報(自然科學版);2009年01期

2 陳勝;鮑亮;陳平;胡圣明;王萌;;BPEL流程數(shù)據(jù)競爭和死鎖檢測算法研究[J];西安電子科技大學學報;2008年06期

3 劉麗;況曉輝;方蘭;許飛;;Web服務故障的分類方法[J];計算機系統(tǒng)應用;2010年08期

相關博士學位論文 前1條

1 尚宗敏;智能流程異常處理的若干關鍵技術研究[D];山東大學;2009年

，

本文編號：1755469