Invited Speakers

Michele Bugliesi (Venice, Italy)

Title: Resource Logics for Type-Based Authorization in Distributed Systems
Abstract: Type systems for authorization are a popular device for the specification and verification of security properties in distributed systems. Resource logics, in turn, are a crucial ingredient for the effectiveness of type-based authorization, and its ability to support the analysis of real-life applications, in which the freshness of communication and the effective number of transactions cannot be overlooked (e.g., e-banking, e-voting, etc.). On the other hand, implementing resource-aware policies in a distributed environment is challenging, as exchanging transient (linear or affine) resources over the network is exposed to the risk of replay attacks. We develop various patterns for the enforcement of resource-aware authorization by static typing. The distinctive feature of our type system is the ability to support the conversion of affine values into a non-affine form suitable for transmission over the network. Recipients of non-affine messages may be able to convert these back to affine form upon verification of signatures using suitably typed affine verification keys. We show the effectiveness of our approach on a number of interesting applications, including cryptographic protocols for session-key establishment, and distributed protocols for e-payment and file hosting services.

Mariangiola Dezani (Torino, Italy)

Title: A reputation system for multirole sessions
Abstract: We extend role-based multiparty sessions with reputations and policies associated with participants. The reputation associated to a process is built by collecting its behaviours as participant in a role to a given session. Processes can also declare policies that must be fulfilled by other roles in a session. These policies are used by processes to check the reputation of the current participants and decide whether to join the session or not. We illustrate the use of our approach with a number of examples from real world protocols.

Matthias Hoelzl (Munich, Germany)

Title: Adaptation and Awareness in Ensembles
Abstract: The ASCENS project researches foundations of and software-engineering methods for ensembles - distributed autonomous systems operating in complex environments which can dynamically adapt to changes in their environment or requirements. We will discuss the notions of adaptation, awareness and emergence which play an important role in the development of ensembles. These terms will be made precise by giving a system model for ensembles on which a mathematical theory of adaptation and awareness can be based. Using this theory we can precisely distinguish different kinds of adaptation, such as adaptation to environment, network or goals, and we can discuss how adaptation, awareness and self-awareness are related.

Kohei Honda (Queen Mary University of London, UK)

Title: Asynchronous Distributed Monitoring for Multiparty Session Enforcement
Abstract: We propose a formal model of runtime safety enforcement for large-scale, cross-language distributed applications with possibly untrusted endpoints. The underlying theory is based on multiparty session types with logical assertions (MPSA), an expressive protocol specification language that supports runtime validation through monitoring. Our method starts from global specifications based on MPSAs which the participants should obey. Distributed monitors use local specifications, projected from global specifications, to detect whether the interactions are well-behaved and take appropriate actions, such as suppressing illegal messages. We illustrate the design of our model with examples from real-world distributed applications. We prove monitor transparency, communication conformance, and global session fidelity in the presence of possibly unsafe endpoints.

Bernd Werther (Volkswagen AG, Germany)

Title: E-Mobility as a Challenge for New ICT Solutions in the Car Industry
Abstract: Due to CO2-emission reduction legislation and decreasing oil availability, electric (e-) vehicles will gain a greater share of the market. With e-mobility a lot of new constraints must be considered such as limited range and extended battery recharging time. The driver's "range anxiety" is a consequence and a huge barrier for a successful launching of e-vehicles into the car market. To increase the consumer confidence in e-vehicles, an onboard planning unit for daily travel based on external information and services is proposed. Many services such as electrical infrastructure and traffic information will be essential for the journey planning process. For example, a vehicle-infrastructure network will provide information concerning infrastructure components and other vehicles. In this view e-mobility will be the catalyst for a real change in the role of information and communication technology (ICT) in the automotive field. The EU-Project "ASCENS" provides a significant contribution for developing driver-vehicle-infrastructure networks. Driver, vehicle and infrastructure are considered as interacting autonomous Service Components (SC) which are temporally organized in an ensemble to reach a goal (e.g. accomplishment of a planned journey). After arriving at the destination in the scheduling process, the Service Component Ensemble (SCE) can reorganize itself to fulfill the future travel tasks. Based on this SCE framework, a wide variety of mobility scenarios can be realized. This presentation gives an overview about the relevant mobility scenarios and the current status of the case study "E-Mobility" within the project "ASCENS".