[Back]

W. Hummer:
"Reliable Provisioning of Data-Centric and Event-Based Applications in the Cloud";
Supervisor, Reviewer: S. Dustdar, M. Pezzè; Institut für Informationssysteme, Distributed Systems Group, 2014; oral examination: 2014-03-05.

The past decade of distributed systems research has been shaped, among others, by three major trends: Service-Oriented Architecture (SOA) is a popular paradigm for implementing loosely coupled distributed applications; Event-Based Systems (EBS) are gaining momentum as a means for encoding complex business logic based on correlated event messages; moreover, Cloud Computing (CC) has fostered advanced virtualization and resource allocation techniques, further shaping the implementation possibilities of SOA and EBS. Distributed computing systems in general, and applications in the Cloud in particular, are often burdened with stringent requirements
concerning reliability and security, dictated by business objectives (e.g., cost-benefit tradeoffs), contractual agreements (e.g., service level agreements, SLAs), or laws. One approach to reliability is software testing, which aims at identifying and avoiding software-induced faults in the first place. A second important aspect of reliability is fault management, which involves different challenges such as fault detection and runtime adaptation. Additionally, security and access control play a crucial role, particularly for multi-tenant Cloud environments. Systematic consideration of these aspects in the software development and validation process is a key concern and requires precise knowledge about the type and nature of potential threats to reliability.
This doctoral thesis tackles the aforementioned challenges and contributes a set of novel methods and tools for reliable provisioning of data-centric and event-based applications in the
Cloud. The primary types of considered applications are business processes and workflows which integrate services and particularly data from a plurality of sources, leveraging established concepts of SOA and EBS. The framework introduced in this thesis provides a robust, scalable, and secure execution environment for such applications. The contribution is split up into three core parts. First, WS-Aggregation is an event-based data processing platform that features elasticity, optimized load distribution, runtime adaptation, and fault management. Second, the TeCoS platform is used to perform systematic testing for application bugs and integration issues such as data incompatibilities. Third, the SeCoS framework enforces access control policies to assure responsibilities and avoid unauthorized actions. The approach is thoroughly evaluated and put into perspective with existing work. A multitude of representative experiments have been conducted with the implemented prototypes, deployed in different commercial and open source Cloud environments. The large-scale performance tests demonstrate the elasticity under
changing workload patterns. The second class of experiments evaluates the testing approach by injecting various faults into running application instances. This evaluation shows that the system correctly identifies faults and reports the achieved test coverage in different configurations. In a third step, the access control enforcement procedure is evaluated for consistency and performance.