An architecture for certification-aware service discovery

Service-orientation is an emerging paradigm for building complex systems based on loosely coupled components, deployed and consumed over the network. Despite the original intent of the paradigm, its current instantiations are limited to a single trust domain (e.g., a single organization). Also, some of the key promises of service-orientation - such as the dynamic orchestration of externally provided software services, using runtime service discovery and deployment - are still unachieved. One of the main reasons for this is the trust gap that normally arises when software services, offered by previously unknown providers, are to be selected at run-time, without any human intervention. To close this gap, the concept of machine-readable security certificates (called asserts) has been recently introduced, which paves the way to automated processing about security properties of services. Similarly to current security certification schemes, the assessment of the security properties of a service is delegated to an independent third party (certification authority), who issues a corresponding assert, bound to the service. In this paper, we propose an architecture, which exploits the assert concept to realise a certification-aware service discovery framework. The architecture supports the discovery of single services based on certified security properties (in additional to the usual functional properties), as well as the dynamic synthesis of service compositions, that satisfy the given security properties. The architecture is extensible, thus allowing for a range of domain specific matchmaking components, to cover dimensions related to, e.g., performance, cost and other non-functional characteristics

Impact assessment for vulnerabilities in open-source software libraries

Software applications integrate more and more open-source software (OSS) to benefit from code reuse. As a drawback, each vulnerability discovered in bundled OSS potentially affects the application. Upon the disclosure of every new vulnerability, the application vendor has to decide whether it is exploitable in his particular usage context, hence, whether users require an urgent application patch containing a non-vulnerable version of the OSS. Current decision making is mostly based on high-level vulnerability descriptions and expert knowledge, thus, effort intense and error prone. This paper proposes a pragmatic approach to facilitate the impact assessment, describes a proof-of-concept for Java, and examines one example vulnerability as case study. The approach is independent from specific kinds of vulnerabilities or programming languages and can deliver immediate results

Annunciare la gioia del Vangelo nell’areopago della contemporaneità. Conoscere l’“a chi” ci rivolgiamo per meglio comunicare il “Chi”

We are experiencing a change of times that is radically transforming the identity of the Western world and creating new and radical challenges to Christianity which is called to get involved again in reality that is progressively shifting away from it. The first part of the article reconstructs some important features of postmodernity and postmodern reli-gious experience and then focuses on some crucial issues for the credible announcement of the Gospel. Acknowledging the inadequacy of some views of God, of the Church, and of faith, the article tries to highlight some instances of contemporary sensibility. Above all, it insists on the need for bringing the question of meaning back to the centre and to over-come the crisis of reason in order to rebuild the alliance between faith and reason by rec-ognizing in the logos the ground to announce the Gospel and dialogue with cultures.Viviamo un cambiamento d’epoca che sta radicalmente trasformando sia l’identità dell’Occidente sia ponendo nuove e radicali sfide al cristianesimo chiamato ad inculturarsi di nuovo in una realtà che da esso si sta progressivamente allontanando. L’articolo in una prima parte ricostruisce alcuni tratti salienti della postmodernità e dell’esperienza religiosa postmoderna per poi soffermarsi su alcune questioni decisive per l’annuncio credibile del vangelo. Preso atto dell’inadeguatezza di alcune rappresentazioni trasmesse di Dio, della Chiesa, e della fede, l’articolo cerca di valorizzare alcune istanze della sensibilità contem-poranea. Soprattutto insiste sulla necessità di rimettere al centro la domanda di senso e su-perare la crisi della ragione per ritrovare per ricostruire l’alleanza tra fede e ragione ricono-scendo nel logos lo strumento per annunciare il vangelo e dialogare con le cultur

The Promethean: Fall 2005

Fall 2005 edition of The Promethean. Contents: National Collegiate Honors Council 1, From The Director 2, Research & Thesis Preparation 2, Honor Student Profile 3, Honors Program Mission Statement 4, Transfer Experience 4, Poetry 4.https://digitalcommons.brockport.edu/promethean/1020/thumbnail.jp

Union College Rocket Team 2021

The Union College Rocket Team annually designs, builds and tests a solid propellant rocket capable of launching to 10,000 ft and deploying a payload at altitude. Historically, the team has taken the rocket to competition at the Spaceport America Cup in New Mexico, competing against other collegiate teams in the 10,000 feet commercial off the shelf category. The 2021 UC Rocket comprises five critical mission groups: structures, propulsion, flight controls, simulation and payload. The 2021 rocket utilizes two 4in diameter phenolic tube sections for the main body and one 6in diameter section for the payload bay connected via a reducing coupler. These three sections of the rocket are connected via bulkheads and shear pins. At various trigger points during the flight, explosive pyro chargers in the bulkheads detonate to separate the sections. The rocket engine is a commercial off-the-shelf Aerotech L-class 1365M solid-fuel engine producing 1365N of peak thrust. Flight control comprises dual independent Altus TeleMetrum flight computers, each with dedicated pyro circuity, battery backup and communications. The flight computers also log flight data and relay real time telemetry information to the ground station via 70cm HAM band radio frequency communication. A third computer, the Altus Metrum EasyMini, activates the payload bay charge at a predetermined altitude for payload release. The payload is a fully independent module with its own recovery system and computer hardware. The payload uses a Raspberry Pi micro-computer that interfaces with various environmental sensors and a digital HD camera to record valuable environmental data as the payload descends through the atmosphere. In addition to experimental testing, theoretical simulations of the rocket\u27s flight characteristics and performance were conducted using RockSim. Additionally, RockSim was used to determine the optimal fin size, shape and placement. Due to the COVID-19 pandemic, the Union College Rocket Team will be presenting the results of this year\u27s work at the Virtual Spaceport America Competition in early summer 2021