Learn More
The move towards supporting more autonomous systems, where decisions are made without direct user intervention, and more complex operating scenarios, where services from multiple organisations form temporary ties to solve particular problems, creates new security challenges. This paper argues that the answers should combine the use of conventional security(More)
Industrial adoption of cloud computing for collaborative business processes is limited by their ability to meet inter-enterprise security requirements. Although some clouds offerings comply with security standards, no solution today allows businesses to assess security compliance of applications at the business level and dynamically link to security(More)
We will present results of the SERSCIS project related to risk management and mitigation strategies in adaptive multi-stakeholder ICT systems. The SERSCIS approach involves using semantic threat models to support automated design-time threat identification and mitigation analysis. The focus of this paper is the use of these models at run-time for automated(More)
Access control is a critical feature of many systems, including networks of services, processes within a computer, and objects within a running process. The security consequences of a particular architecture or access control policy are often difficult to determine, especially where some components are not under our control, where components are created(More)
Semantic grid is becoming a key enabler for next generation grid and the need of supporting process description and enactment, by means of composition of multiple resources, emerged as one of the fundamental requirements. Within NextGRID project, the idea of adopting business processes (expressed as workflow policies) as architectural components in a next(More)
As the Internet revolutionised access to information, the Grid will revolutionise access to computer applications and software systems. In general, this includes the highly important aspect of access to information resources such as Grid database systems (data-driven Grid applications), but we concentrate here on computational services providing numerical(More)
The U.K. National Crystallography Service (NCS) has developed a prototype e-science infrastructure for the provision of a small molecule crystallography service from sample receipt to results dissemination. This paper outlines the two strands of this service, which (a) enable a user to contribute in the conduction of an experiment and (b) provide an(More)