CREOLE: a Universal Language for Creating, Requesting, Updating and Deleting Resources

In the context of Service-Oriented Computing, applications can be developed following the REST (Representation State Transfer) architectural style. This style corresponds to a resource-oriented model, where resources are manipulated via CRUD (Create, Request, Update, Delete) interfaces. The diversity of CRUD languages due to the absence of a standard leads to composition problems related to adaptation, integration and coordination of services. To overcome these problems, we propose a pivot architecture built around a universal language to manipulate resources, called CREOLE, a CRUD Language for Resource Edition. In this architecture, scripts written in existing CRUD languages, like SQL, are compiled into Creole and then executed over different CRUD interfaces. After stating the requirements for a universal language for manipulating resources, we formally describe the language and informally motivate its definition with respect to the requirements. We then concretely show how the architecture solves adaptation, integration and coordination problems in the case of photo management in Flickr and Picasa, two well-known service-oriented applications. Finally, we propose a roadmap for future work.Comment: In Proceedings FOCLASA 2010, arXiv:1007.499

Criojo: A Pivot Language for Service-Oriented Computing - The Introspective Chemical Abstract Machine

Interoperability remains a significant challenge in service-oriented computing. After proposing a pivot architecture to solve three interoperability problems, namely adaptation, integration and coordination problems between clients and servers, we explore the theoretical foundations for this architecture. A pivot architecture requires a universal language for orchestrating services and a universal language for interfacing resources. Since there is no evidence today that Web Services technologies can provide this basis, we propose a new language called Criojo and essentially show that it can be considered as a pivot language. We formalize the language Criojo and its operational semantics, by resorting to a chemical abstract machine, and give an account of formal translations into Criojo: in a distributed context, we deal with idiomatic languages for four major programming paradigms: imperative programming, logic programming, functional programming and concurrent programming

Coinductive big-step operational semantics

Using a call-by-value functional language as an example, this article illustrates the use of coinductive definitions and proofs in big-step operational semantics, enabling it to describe diverging evaluations in addition to terminating evaluations. We formalize the connections between the coinductive big-step semantics and the standard small-step semantics, proving that both semantics are equivalent. We then study the use of coinductive big-step semantics in proofs of type soundness and proofs of semantic preservation for compilers. A methodological originality of this paper is that all results have been proved using the Coq proof assistant. We explain the proof-theoretic presentation of coinductive definitions and proofs offered by Coq, and show that it facilitates the discovery and the presentation of the results

A Confinement Criterion for Securely Executing Mobile Code

International audienceMobile programs, like applets, are not only ubiquitous but also potentially malicious. We study the case where mobile programs are executed by a host system in a secured environment, in order to control the accesses from mobile programs to local resources. The article deals with the following question: how can we ensure that the local environment is secure? We answer by giving a confinement criterion: if the type of the local environment satisfies it, then no mobile program can directly access a local resource. The criterion, which is type-based and hence decidable, is valid for a functional language with references. By proving its validity, we solve a conjecture stated by Leroy and Rouaix at POPL '98. Moreover, we show that the criterion cannot be weakened by giving counter-examples for all the environment types that do not satisfy the criterion, and that it is pertinent by detailing the example of a specific security architecture. The main contribution of the article is the proof method, based on a language annotation that keeps track of code origin and that enables the study of the interaction frontier between the local code and the mobile code. The generalization of the method is finally discussed

Towards a Unified Formal Model for Service Orchestration and Choreography

National audienceThe growth of Internet has extended the scope of software applications, leading to network-based architectures. The main characteristic of these architectures is that they restrict the communication between remote components to message passing. Service-oriented computing is a solution to organise the exchange of messages in a network-based architecture, by using services as primitive components. Thus, each component can be a client, a server or both. Since a service-oriented application typically spans a number of different organizations, its executions is subject to stringent security requirements. That is the reason why the partners involved generally define a contract at the global level in order to enforce some security policy. From the contract, each partner deduces by projection a specification of the security functionalities that it must locally implement. Of course, in order to be useful, all these projections must ensure that the local functionalities effectively collaborate to realize the global contract

From Object-Oriented Programming to Service-Oriented Computing: How to Improve Interoperability by Preserving Subtyping

Short paper presented as a posterInternational audienceThe object-oriented paradigm is increasingly used in the implementation and the use of web services. However, the mismatch between objects and document structures in the wire has a negative impact over interoperability, more particularly when subtyping is involved. In this paper, we discuss how to improve interoperability in this context by preserving the subsumption property associated to subtyping. First we show the weaknesses of existing web service frameworks used for serialization and deserialization. Second we propose new foundations for serialization and deserialization, which leads to the specification of a new data binding between objects and document structures, compatible with subtyping

Passerelles entre les approches statistiques et géométriques de la détection

Les deux principaux types d'approche des problèmes de détection et d'isolation de défaillances sont rappelés ici dans le but de mettre en évidence les liens théoriques qui existent entre celles-ci. Cette tentative d'unification permet également d'envisager des problèmes de détection d'une complexité accrue et la prise en compte de certaines informations jusque là négligées

CREOLE: a Universal Language for Creating, Requesting, Updating and Deleting Resources

International audienceIn the context of Service-Oriented Computing, applications can be developed following the REST (Representation State Transfer) architectural style. This style corresponds to a resource oriented model, where resources are manipulated via CRUD (Create, Request, Update, Delete) interfaces. The diversity of CRUD languages due to the absence of a standard leads to composition problems related to adaptation, integration and coordination of services. To overcome these problems, we propose a pivot architecture built around a universal language to manipulate resources, called CREOLE, a CRUD Language for Resource Edition. In this architecture, scripts written in existing CRUD languages, like SQL, are compiled into CREOLE and then executed over different CRUD interfaces. After stating the requirements for a universal language for manipulating resources, we formally describe the language and informally motivate its definition with respect to the requirements. We then concretely show how the architecture solves adaptation, integration and coordination problems in the case of photo management in Flickr and Picasa, two well-known service-oriented applications. Finally, we propose a roadmap for future work

The Abstract Accountability Language: its Syntax, Semantics and Tools

Accountability is the driving principle for several of regulatory frameworks such as the European Union's General Data Protection Regulation (EU GDPR), the Health Insurance Portability and Accountability Act (HIPAA) and the Corporate and Auditing Accountability and Responsibility Act, thus influencing how organizations run their business processes. It is a central concept for enabling trust and assurance in cloud computing and future internet-based services that may emerge. Nevertheless, accountability can have different interpretations according to the level abstraction. This leads to uncertainty concerning handling and responsibility for data in computer systems with outsourcing supply-chains, as in cloud computing. When defining policies to govern organizations, we need tools to model accountability in rich contexts, including concepts like multiple agents, obligations, remediation actions and temporal aspects. The Abstract Accountability Language (AAL) is built on logical foundations allowing to describe real-world scenarios involving accountability concerns. Its semantic principles provide us means to answer whether the conditions to reach accountability in a given context are met. Moreover, we created a tool support to verify and monitor accountability policies

Identification of new binding partners of the chemosensory signaling protein Gγ13 expressed in taste and olfactory sensory cells

Tastant detection in the oral cavity involves selective receptors localized at the apical extremity of a subset of specialized taste bud cells called taste receptor cells (TRCs). The identification of the genes coding for the taste receptors involved in this process have greatly improved our understanding of the molecular mechanisms underlying detection. However, how these receptors signal in TRCs, and whether the components of the signaling cascades interact with each other or are organized in complexes is mostly unexplored. Here we report on the identification of three new binding partners for the mouse G protein gamma 13 subunit (Gγ13), a component of the bitter taste receptors signaling cascade. For two of these Gγ13 associated proteins, namely GOPC and MPDZ, we describe the expression in taste bud cells for the first time. Furthermore, we demonstrate by means of a yeast two-hybrid interaction assay that the C terminal PDZ binding motif of Gγ13 interacts with selected PDZ domains in these proteins. In the case of the PDZ domain-containing protein zona occludens-1 (ZO-1), a major component of the tight junction defining the boundary between the apical and baso-lateral region of TRCs, we identified the first PDZ domain as the site of strong interaction with Gγ13. This association was further confirmed by co-immunoprecipitation experiments in HEK 293 cells. In addition, we present immunohistological data supporting partial co-localization of GOPC, MPDZ, or ZO-1, and Gγ13 in taste buds cells. Finally, we extend this observation to olfactory sensory neurons (OSNs), another type of chemosensory cells known to express both ZO-1 and Gγ13. Taken together our results implicate these new interaction partners in the sub-cellular distribution of Gγ13 in olfactory and gustatory primary sensory cells