Model Based Development of Quality-Aware Software Services

Modelling languages and development frameworks give support for functional and structural description of software architectures. But quality-aware applications require languages which allow expressing QoS as a first-class concept during architecture design and service composition, and to extend existing tools and infrastructures adding support for modelling, evaluating, managing and monitoring QoS aspects. In addition to its functional behaviour and internal structure, the developer of each service must consider the fulfilment of its quality requirements. If the service is flexible, the output quality depends both on input quality and available resources (e.g., amounts of CPU execution time and memory). From the software engineering point of view, modelling of quality-aware requirements and architectures require modelling support for the description of quality concepts, support for the analysis of quality properties (e.g. model checking and consistencies of quality constraints, assembly of quality), tool support for the transition from quality requirements to quality-aware architectures, and from quality-aware architecture to service run-time infrastructures. Quality management in run-time service infrastructures must give support for handling quality concepts dynamically. QoS-aware modeling frameworks and QoS-aware runtime management infrastructures require a common evolution to get their integration

Incremental Common Criteria certification processes using DevSecOps practices

The growing digitalisation of our economies and societies is driving the need for increased connectivity of critical applications and infrastructures to the point where failures can lead to important disruptions and consequences to our lives. One growing source of failures for critical applications and infrastructures originates from cybersecurity threats and vulnerabilities that can be exploited in attacks. One approach to mitigating these risks is verifying that critical applications and infrastructures are sufficiently protected by certification of products and services. However, reaching sufficient assurance levels for product certification may require detailed evaluation of product properties. An important challenge for product certification is dealing with product evolution: now that critical applications and infras- tructures are connected they are being updated on a more frequent basis. To ensure continuity of certification, updates must be analysed to verify the impact on certified cybersecurity properties. Impacted properties need to be re-certified. This paper proposes a lightweight and flexible incremental certification process that can be integrated with DevSecOps practices to automate as much as possible evidence gathering and certification activities. The approach is illustrated on the Common Criteria product certification scheme and a firewall update on an automotive case study. Only the impact analysis phase of the incremental certification process is illustrated

Effect of iron on the expression of sirR and sitABC in biofilm-associated Staphylococcus epidermidis

BACKGROUND: Different gene expression patterns correlate with the altered phenotype in biofilm-associated bacteria. Iron and iron-linked genes are thought to play a key-role in biofilm formation. The expression of Fe-linked genes (sirR, sitABC operon) in Staphylococcus epidermidis, was compared in planktonic versus sessile bacteria in vitro and in vivo in a subcutaneous foreign body rat model. RESULTS: In vitro in a Fe-limited environment, the planktonic form of S. epidermidis produces siderophores and grows slower than in Fe-rich environment. The expression of sirR in planktonic bacteria, in vitro, was not different in medium without Fe or with 1 μM FeCl(3). High Fe concentrations (25 μM FeCl(3)) increased expression of sirR transiently during the early phase of incubation. Expression of sitC in vitro, in planktonic bacteria, was inversely correlated with sirR expression in medium with 25 μM FeCl(3): sitC expression decreased for the first 3 hours followed by an up regulation. In sessile bacteria in vitro, sirR expression was high and independent of the Fe concentration. The expression of sitC was not inversely correlated to sirR expression. In vivo, expression levels of sirR and of sitABC were high during the initial phase after implantation and, after a transient decrease, remained stable over a period of two weeks. CONCLUSION: Our data suggest that the expression of sirR and the regulatory effect of sirR on the sitABC operon are different in planktonic and sessile bacteria

Identification of cultured isolates of clinically important yeast species using fluorescent fragment length analysis of the amplified internally transcribed rRNA spacer 2 region

BACKGROUND: The number of patients with yeast infection has increased during the last years. Also the variety of species of clinical importance has increased. Correct species identification is often important for efficient therapy, but is currently mostly based on phenotypic features and is sometimes time-consuming and depends largely on the expertise of technicians. Therefore, we evaluated the feasibility of PCR-based amplification of the internally transcribed spacer region 2 (ITS2), followed by fragment size analysis on the ABI Prism 310 for the identification of clinically important yeasts. RESULTS: A rapid DNA-extraction method, based on simple boiling-freezing was introduced. Of the 26 species tested, 22 could be identified unambiguously by scoring the length of the ITS2-region. No distinction could be made between the species Trichosporon asteroides and T. inkin or between T. mucoides and T. ovoides. The two varieties of Cryptococcus neoformans (var. neoformans and var. gattii) could be differentiated from each other due to a one bp length difference of the ITS2 fragment. The three Cryptococcus laurentii isolates were split into two groups according to their ITS2-fragment lengths, in correspondence with the phylogenetic groups described previously. Since the obtained fragment lengths compare well to those described previously and could be exchanged between two laboratories, an internationally usable library of ITS2 fragment lengths can be constructed. CONCLUSIONS: The existing ITS2 size based library enables identification of most of the clinically important yeast species within 6 hours starting from a single colony and can be easily updated when new species are described. Data can be exchanged between laboratories

BEACON: A Cloud Network Federation Framework

This paper presents the BEACON Framework, which will enable the provision and management of cross-site virtual networks for federated cloud infrastructures in order to support the automated deployment of applications and services across different clouds and datacenters. The proposed framework will support different federation architectures, going from tightly coupled (datacenter federation) to loosely coupled (cloud federation and multi-cloud orchestration) architectures, and will enable the creation of Layer 2 and Layer 3 overlay networks to interconnect remote resources located at different cloud sites. A high level description of the main components of the BEACON framework is also introduced