An architecture for certification-aware service discovery

Service-orientation is an emerging paradigm for building complex systems based on loosely coupled components, deployed and consumed over the network. Despite the original intent of the paradigm, its current instantiations are limited to a single trust domain (e.g., a single organization). Also, some of the key promises of service-orientation - such as the dynamic orchestration of externally provided software services, using runtime service discovery and deployment - are still unachieved. One of the main reasons for this is the trust gap that normally arises when software services, offered by previously unknown providers, are to be selected at run-time, without any human intervention. To close this gap, the concept of machine-readable security certificates (called asserts) has been recently introduced, which paves the way to automated processing about security properties of services. Similarly to current security certification schemes, the assessment of the security properties of a service is delegated to an independent third party (certification authority), who issues a corresponding assert, bound to the service. In this paper, we propose an architecture, which exploits the assert concept to realise a certification-aware service discovery framework. The architecture supports the discovery of single services based on certified security properties (in additional to the usual functional properties), as well as the dynamic synthesis of service compositions, that satisfy the given security properties. The architecture is extensible, thus allowing for a range of domain specific matchmaking components, to cover dimensions related to, e.g., performance, cost and other non-functional characteristics

The history of WiMAX: a complete survey of the evolution in certification and standarization for IEEE 802.16 and WiMAX

Most researchers are familiar with the technical features of WiMAX technology but the evolution that WiMAX went through, in terms of standardization and certification, is missing and unknown to most people. Knowledge of this historical process would however aid to understand how WiMAX has become the widespread technology that it is today. Furthermore, it would give insight in the steps to undertake for anyone aiming at introducing a new wireless technology on a worldwide scale. Therefore, this article presents a survey on all relevant activities that took place within three important organizations: the 802.16 Working Group of the IEEE (Institute of Electrical and Electronics Engineers) for technology development and standardization, the WiMAX Forum for product certification and the ITU (International Telecommunication Union) for international recognition. An elaborated and comprehensive overview of all those activities is given, which reveals the importance of the willingness to innovate and to continuously incorporate new ideas in the IEEE standardization process and the importance of the WiMAX Forum certification label granting process to ensure interoperability. We also emphasize the steps that were taken in cooperating with the ITU to improve the international esteem of the technology. Finally, a WiMAX trend analysis is made. We showed how industry interest has fluctuated over time and quantified the evolution in WiMAX product certification and deployments. It is shown that most interest went to the 2.5 GHz and 3.5GHz frequencies, that most deployments are in geographic regions with a lot of developing countries and that the highest people coverage is achieved in Asia Pacific. This elaborated description of all standardization and certification activities, from the very start up to now, will make the reader comprehend how past and future steps are taken in the development process of new WiMAX features

E-consulting of Small and Medium Agribusiness Enterprises: The case of eEurope Godigital application into the Peloponnese Region

This study describes the design and development of a web-based electronic training system aiming at business operations of small and medium-sized agribusiness enterprises (SMAEs). The proposed system will meet current and future needs of SMAEs for timely, accurate, and customised training removing the barriers of geographical solitude and economies of scale. The objectives of this system are: (a) to offer training and consultancy to SMAEs on how to use information and communication technologies as business tools in order to improve their operations and gain competitive advantage (b) to provide education material customised to the special needs of each SMAE, (c) to provide on-line training, advice and consultancy using special-trained operators, and (d) to provide on-line training, advice and consultancy by skilled operators who have been trained to offer those services. ETS will be an Internet-based system. The system will operate as a third-party trusted intermediate between SMAEs, consultants, and content providers. The system design will be extended to cover the needs of the programme "Training support for Go-Digital Project" funded by Greek Ministry of Development which aims to offer training and support in the usage of Internet services to 50.000 SMEs

Designing and Implementing a Distributed Social Network Service for Mobile Devices

The paper presents a new paradigm for building social network services. The proposed plat-form is called eXtensible Social Network. As it uses the XMPP protocol for authentication and communication, it allows users from different service providers interact with each other, without having to change their accounts. Moreover, the platform provides means for users to authenticate and interact with each other while temporary disconnected from the Internet. Moreover, the platform is specially designed for mobile devices, running on their restrictive operating systems and taking advantage of the systems optimizations.Social Network, Mobile Devices, Service, XMPP, iOS, Android, Distributed, Plat-form

Medical Information Representation Framework for Mobile Healthcare

In mobile healthcare, medical information are often expressed in different formats due to the local policies and regulations and the heterogeneity of the applications, systems, and the adopted Information and communication technology. This chapter describes a framework which enables medical information, in particular clinical vital signs and professional annotations, be processed, exchanged, stored and managed modularly and flexibly in a mobile, distributed and heterogeneous environment despite the diversity of the formats used to represent the information. To deal with medical information represented in multiple formats the authors adopt techniques and constructs similar to the ones used on the Internet, in particular, the authors are inspired by the constructs used in multi-media e-mail and audio-visual data streaming standards. They additionally make a distinction of the syntax for data transfer and store from the syntax for expressing medical domain concepts. In this way, they separate the concerns of what to process, exchange and store from how the information can be encoded or transcoded for transfer over the internet. The authors use an object oriented information model to express the domain concepts and their relations while briefly illustrate how framework tools can be used to encode vital sign data for exchange and store in a distributed and heterogeneous environment

The Horcrux Protocol: A Method for Decentralized Biometric-based Self-sovereign Identity

Most user authentication methods and identity proving systems rely on a centralized database. Such information storage presents a single point of compromise from a security perspective. If this system is compromised it poses a direct threat to users' digital identities. This paper proposes a decentralized authentication method, called the Horcrux protocol, in which there is no such single point of compromise. The protocol relies on decentralized identifiers (DIDs) under development by the W3C Verifiable Claims Community Group and the concept of self-sovereign identity. To accomplish this, we propose specification and implementation of a decentralized biometric credential storage option via blockchains using DIDs and DID documents within the IEEE 2410-2017 Biometric Open Protocol Standard (BOPS)