Creating Context-Adaptive Business Processes

Acceptance rate : 15%, Rank (CORE) : AInternational audienceAs the dynamicity of today's business environments keeps increasing, there is a need to continuously adapt business processes in order to respond to the changes in those environments and keep a competitive level. By using complex event processing, we can discover information that is relevant to our organization, which is usually hidden among the data generated in the environment, and use it to adapt the processes accordingly in order to respond to the changing conditions in an optimal way. Unfortunately, the static nature of business process definitions makes it impossible to adapt them at runtime and the redeployment of a modified process is required. By using a component-based approach, we can transform the existing business processes into dynamically bound components, adding the flexibility needed to adapt the processes at runtime. In this paper we present CEVICHE, a framework that combines the strengths of complex event processing and dynamic business process adaptation, which allows to respond to the needs of the rapidly changing environment, and its adaptation language called SBPL, an extension to BPEL which adds flexibility to business processes

Una marca de agua inteligente aplicada al dinero electrónico

International audienceEl uso de las marcas de agua se ha incrementado, principalmente por la necesidad de proteger los derechos de autor, detener copias ilegales o medir la integridad de los datos de ciertos archivos. Es bien sabido que se puede insertar código ejecutable en imágenes, pero hasta ahora solamente se ha estudiado como una amenaza de seguridad para el usuario. Nosotros proponemos utilizar esta característica de manera segura para expandir las aplicaciones actuales de las marcas de agua, dándoles exibilidad a través del código ejecutable. Presentamos el modelo de marca de agua inteligente para resolver problemas de incompatibilidad de funciones y demostramos cómo se puede aplicar este modelo a un escenario de dinero electrónico. En dicho escenario el beneciario puede manejar diferentes implementaciones de dinero electrónico mediante una aplicación estándar. Como parte de este escenario, también proponemos una máquina expendedora de dinero electrónico para ofrecer una opción de pago a los usuarios que no tienen cuenta bancaria

AProSec: an Aspect for Programming Secure Web Applications

International audienceAdding security functions in existing Web application servers is now vital for the IS of companies and organizations. Writing crosscutting functions in complex software should take advantage of the modularity offered by new software development approaches. With Aspect-Oriented Programming (AOP), separating concerns when designing an application fosters reuse, parameterization and maintenance. In this paper, we design a security aspect called AProSec for detecting SQL injection and Cross Scripting Site (XSS) that are common attacks in web servers. We experiment this aspect with the AspectJ language and the JBoss AOP framework. With this experimentation, we show the advantage of runtime platforms such as JBoss AOP for changing security policies at runtime. Finally, we describe related work on security and AOP

A Traceability Service to Facilitate RFID Adoption in the Retail Supply Chain

ISBN: 978-989-8111-94-4International audienceNowadays, companies are suffering changes in the way they deal with their inventories and their whole supply chain management. New technologies are emerging to help them adapt to the changes and keep a competitive status, but the adoption of such technologies is not always easy. Even though a lot of research has been done for RFID, there are still some areas that are being left aside, like the traceability aspect, which is one of the most important concerns in the retail supply chain. We propose a service named TRASER (TRAceability SErvice for the Retail supply chain) that will help the companies adopt the new technologies into their existing environments, dealing with persistence and traceability, and allowing the users to manage their operation according to their business rules, workflows and historical data

A Middleware Platform to Federate Complex Event Processing

International audienceDistributed systems like crisis management are subject to the dissemination of a huge volume of heterogeneous events, ranging from low level network data to high level crisis management intelligence, depending on the role of the rescue teams involved. In such systems, Complex Event Processing (CEP) has emerged as a solution to detect and react (in real-time) to complex events, which are correlations of more primitive events. Although various CEP engines implement the support for dealing with the business heterogeneity of events,the technological ntegration of these events remains uncovered. Therefore, in this paper we introduce DiCEPE (Distributed Complex Event Processing Engine), a platform which focuses on the integration of CEP engines in distributed systems. DiCEPE provides a native support for various communication protocols in order to federate CEP engines and ease the deployment of complex systems-of-systems. We illustrate our proposal using a nuclear crisis management scenario and show how DiCEPE leverages the coordination and the federation of different CEP engines

Distributed Complex Event Processing Engine

National audienceDiCEPE (Distributed Complex Event Processing) is a platform that focuses on the integration of CEP engines in distributed systems, and which is capable of using various communication protocols

Using Aspect Programming to Secure Web Applications

International audienceAs the Internet users increase, the need to protect web servers from malicious users has become a priority in many organizations and companies. Writing crosscutting functions in complex software should take advantage of the modularity offered by new software development approaches. With AspectOriented Programming (AOP), separating concerns when designing an application fosters reuse, parameterization and maintenance. In this paper, we design a security aspect called AProSec for detecting SQL injection and Cross Scripting Site (XSS), that are common attacks in web servers. We experimented this aspect with AspectJ language and JBoss AOP. By this experimentation, we show the advantage of runtime platforms such as JBoss AOP for changing security policies at runtime. Finally, we describe related work on security and AOP

Pedagogía Ignaciana 5. Reflexiones para un modelo educativo universitario ignaciano

Obra que reúne las ponencias presentadas en el Seminario Internacional sobre el Modelo Ignaciano Universitario, realizado en el Instituto Tecnológico y de Estudios Superiores de Occidente, del 16 al 18 de febrero de 1998. Allí se abordaron cuestiones sobre la tradición educativa de los jesuitas, los elementos esenciales de un modelo universitario de inspiración ignaciana y su praxis.ITESO, A.C

Vers la création de processus métiers sensibles au contexte dynamiquement adaptables en utilisant le traitement des événements complexes

En plus de l'utilisation des appareils ubiquitaires qui continue à croître, nous avons accès à d'informations dites contextuelles. Ces informations permettent de connaître l'état de notre environnement et nous aident à prendre les décisions de notre vie quotidienne en fonction du contexte dans lequel nous nous positionnons. La nature statique des processus métiers ne leur permet pas d'être modifiés dynamiquement, les rendant ainsi moins utiles dans un nouveau contexte. Si nous voulons changer le comportement d'un processus métier, nous devons le stopper, le modifier et le redéployer entièrement. Pour répondre à ces problèmes, nous proposons une approche qui permet de représenter des processus métiers sensibles au contexte où les informations de contexte sont considérées comme des événements contrôlés en temps réel. Avec Ceviche, nous intégrons les informations obtenues à partir du contexte avec la capacité d'adaptation des processus métiers en cours d'exécution. De plus, l'une des originalités du cadre logiciel Ceviche vient de la définition d'une opération de désadaptation et de sa mise en oeuvre, car défaire l'adaptation peut facilement se passer mal et conduire à des états non désirés. En outre, avec Ceviche, nous apportons une propriété de stabilité au niveau du traitement des événements complexes. En définissant notre propre langage, Adaptive Business Process Language (ABPL), comme un langage pivot, Ceviche facilite l'utilisation de CEP sans les inconvénients de l'adoption anticipée de l'approche. Nous utilisons une technique de type plug-in qui permet aux événements définis en ABPL d'être utilisés dans pratiquement n'importe quel moteur CEP.As the use of ubiquitous devices continues to grow, we have more access to pervasive information around us. This information allows us to know the state of our surroundings, and we make decisions of our everyday life based on that context information. The static nature of business processes does not allow them to be dynamically modified, thus leaving them less useful in the new context. If we want to change the behavior of a business process, we need to stop it, modify it and redeploy it entirely.To address these issues, in this thesis we present the Ceviche Framework. We bring forward an approach which allows to represent context-aware business processes where context information is considered as events which are monitored in real-time. With Ceviche we integrate the information obtained from the context with the capability of adapting business process at run-time. Also, one of the original contributions of the Ceviche Framework is the definition of a correct adaptation undoing mechanism and its implementation, as undoing an adaptation can easily go wrong and lead to undesired states and unstable processes.The implementation of the Ceviche Framework offers flexibility and dynamicity properties to the business processes, using a component-based approach, allowing the modification of their bindings at run-time. Moreover, with Ceviche we also provide a stability property in terms of CEP. By defining our own simple language, the Adaptive Business Process Language (ABPL), as a pivot language, Ceviche facilitates the use of CEP without the drawbacks of early adoption. We use a plug-in approach that allows the events defined in ABPL to be used in virtually any CEP engine