Administrative Information المعلومات االدارية Project Title - عنوان المشروع Securing the dynamic discovery and invocation of Web services from mobile devices تأمين و حماية التشغيل الديناميكي لخدمات الشبكة العالمية المبرمجة من األجهزة و الحواسيب المحمولة Principal Investigator - الباحث الرئيسي رقم الهاتف العنوان االلكتروني العنوان الوظيفية المؤسسة االسم Telephone e-mail Address Post Institution Name 01-350000 email@example.com Bliss Street, Professor American Hassan Ext. 3459 Raymond University Artail Ghosn of Beirut Bldng, Rm 408 Co-Workers - الباحثون المشاركون العنوان االلكتروني المؤسسة االسم e-mail Institution Name 1 year : Duration -المدة التعاقدية للمشروع Scientific Information ي المعلومات العلم ّة Objectives - الهدف Recent trends in mobile computing and popularity of mobile devices has motivated interest in accessing web services from mobile devices in order to gain access to remote data and also to extend the functionality of such devices. A totally dynamic access of Web Services could entail discovering related services through browsing the UDDI registry and then determining the most suitable service that would meet the need of the user who may not be aware of the service’s location nor its exact name. While there are no fundamental impediments that prevent the full usage of the Web Services technology on mobile devices, there is however a wide range of infrastructural issues that need to be addressed. These were addressed and solved by developing an architecture, which is functional but lacks security mechanisms to protect it from network attacks, and is missing components that are needed for real deployments in environments that are susceptible to intrusions and unlawful access. Without these security components, the functions and integrity of the system plus the privacy of the users will be compromised if subjected to network attacks, and will not therefore be able to serve its rightful users. As a result, the proposed work is essential and is needed in order to produce a complete and usable system. Achievements -أالنجازات المحققة The proposal, as was submitted to LNCSR, asked for two-year funding, but only one year was approved. As such, work focused on the main architectural blocks of the system and developing a complete and solid system, while work is continuing on implementing the remaining functionalities especially those relating to some of the network attacks. Actually, the development of the system was guided by the feedback and suggestions of expert reviewers of the IEEE Transactions on Services Computing. As a result, additional and important contributions were implemented, the most important of which are 1) a thorough study of the energy consumption and savings in every mobile device participating in this architecture, and 2) a scalability analysis that entailed analyzing the load on the MIM server. The paper was accepted for publication in a future issue of IEEE Transactions on Services Computing, and is now published on line at the following link: http://www.computer.org/portal/web/csdl/transactions/tsc;jsessionid=c9aa8e0a8584dc4f646d1be0fb82#3. This important publication acknowledges the generous contribution of LNCSR, which made it possible to develop the system and share its description, analysis, and performance with the research and scientific community. With the exponential growth of the usage of mobile devices and smart phones in Lebanon and the rest of the world, this system will prove to advance the business of any organization that benefits from the services offered in the Web. Perspectives - آفاق البحث Mobile devices are becoming more pervasive, and it is becoming increasingly necessary to integrate Web services into applications that run on these devices. We introduced a novel approach for dynamically invoking Web service methods from mobile devices with minimal user intervention that only involves entering a search phrase and values for the method parameters. The architecture overcomes technical challenges that involve consuming discovered services dynamically by introducing a man-in-the-middle (MIM) server that provides a Web service whose responsibility is to discover needed services and build the client-side proxies at runtime. The architecture moves to the MIM server energy-consuming tasks that would otherwise run on the mobile device. Such tasks involve communication with servers over the Internet, and XML-parsing of files and on-the-fly compilation of source code. We performed an extensive evaluation of the system performance that includes scalability measurements as it relates to the capacity of the MIM server in handling mobile client requests, and device battery power savings resulting from delegating the service discovery tasks to the MIM server. Publications & Communications - المنشورات والمساهمات في المؤتمرات H. Artail, K. Fawaz, and A. Ghandour, “A proxy-based architecture for dynamic discovery and invocation of Web Services from mobile devices”, IEEE Transactions on Services Computing, accepted, August 13, 2010. Abstract - موجز عن نتائج البحث This research was carried out by two graduate students in addition to the Principle Investigator. The completed main project activities include the following: 1. Complete development and implementation of a prototypical system comprising the MIM Server and three clients deployed on three HP iPAQ hx 2790 Pocket PCs running the Windows Mobile operating system. 2. Conducting a theoretical analysis of different performance measures of the system, including a study of scalability and cache hit rate. 3. Designing a novel battery power consumption experiment to study the energy consumption of each mobile device that uses the system, and determining its theoretical lifetime on a single battery charge. 4. Designing and performing multiple experiments to test and report the performance of the system. This includes user wait time, battery energy consumption, server load, and overall system effectiveness. 5. Studying the security of the system and more specifically, the security of the MIM Server itself, in addition to protecting the data in transit from the mobile device to the server, and from the server to the device. 6. Analysis of the suitability of the proposed architecture to include Google Android and Apple iPhone clients.
Pages to are hidden for
"Hasan Artail"Please download to view full document