Title: Service Automata: Foundation, Implementation, and Applications

Abstract:
Service automata are a novel framework for reliably enforcing security in 
distributed systems. A key novelty of service automata is that security is 
enforced in a decentralized though coordinated fashion. Following the 
concept of service automata, a novel tool, called CliSeAu, is proposed for 
hardening distributed Java programs. CliSeAu takes as input a specification 
of the desired properties and a Java bytecode target program, i.e. the 
format in which Java programs are usually provided. CliSeAu returns 
hardened Java bytecode that provides the same functionality as the original 
code, unless this code endangers the desired properties. By monitoring the 
components of a distributed system in a decentralized and coordinated 
fashion, our tool CliSeAu is able to enforce a wide range of properties, 
both effectively and efficiently. CliSeAu has been used in various 
application domains, including distributed social network systems and 
service markets. 

In this talk, I will start with the concept of service automata and a 
generic formalization of service automata in CSP. Then, I will present the 
architecture of CliSeAu, explain how the components of a distributed target 
program are instrumented by CliSeAu, and illustrate with an example 
application how CliSeAu can be used for securing distributed programs. 
Finally, I will conclude with selected on-going research topics on service 
automata and CliSeAu.