Ensuring Compliance of Architectural Design Decisions and Implementations
About the project
IT Applications have to ensure compliance – the conformity to laws and regulations, which affect the architecture design and runtime of an application. In this scope, only some compliance requirements affect the functional aspects of the applications as they target for instance the supported business processes. For example, these requirements may specify an order of activities or certain time dependencies of activities following each other. A significant number of other compliance requirements affect rather the non-functional properties of the applications, such as hosting location, physical accessibility of used hardware, required logging intervals, etc. Such compliance requirements are significantly harder to ensure as they do not manifest in the applications’ functions and easily observable behavior. In general, compliance requirements, therefore, lead to architectural design decisions (ADD) affecting the application design, deployment, and runtime. However, no approach exists that verifies or ensures the consistent realization of ADDs concerning compliance aspects during design time and runtime.
As a means to formalize ADDs, patterns have already been used. A pattern documents proven solutions to reoccurring architectural problems in a human-readable form. The selection of a pattern to be implemented by an IT application can be seen an ADD. However, pattern formalization attempts mostly focus on structural pattern aspects and fall short in dealing with the inherent variability handled by humans during manual pattern implementation. The ADDCompliance project will investigate compliance patterns to document proven strategies in dealing with compliance requirements. In contrast to existing IT support for compliance, these compliance patterns do not consider the refinement of specific laws and regulations, but enable an application to deal with varying compliance requirements. To ensure adherence to these compliance patterns during application design and runtime, pattern documents – originally followed manually by human developers – will be formalized using structural and behavioral models. Using these models, the ADDCompliance project will develop method and tools to track the architectural decisions made due to compliance requirements and enforce their realization during design time and runtime of the application.
Team
Univ.-Prof. Dr. Uwe Zdun
Universität Wien | Research Group Software Architecture
Währingerstraße 29, 1090 Vienna, Austria, Room: 5.29
uwe.zdun@univie.ac.at
T +43-1-4277-78510
Prof. Dr. Dr. h. c. Frank Leymann
Universität Stuttgart | Institute of Architecture of Application Systems
Universitätsstraße 38, 70569 Stuttgart, Germany, Room: 1.359; P.A.: 1.353
Leymann@iaas.uni-stuttgart.de
T +49-711-685-88470
Amirali Amiri, M.Sc.
Universität Wien | Research Group Software Architecture
Währingerstraße 29, 1090 Vienna, Austria, Room: 5.40
amirali.amiri@univie.ac.at
T +43-1-4277-78541
Christoph Krieger M.Sc.
Universität Stuttgart | Institute of Architecture of Application Systems
Universitätsstraße 38, 70569 Stuttgart, Germany, Room: 1.136
christoph.krieger@iaas.uni-stuttgart.de
T +49-711-685-88-205
Dr. Georg Simhandl
Universität Wien | Research Group Software Architecture
Währingerstraße 29, 1090 Vienna, Austria, Room: 5.31
georg.simhandl@univie.ac.at
T +43-1-4277-78540
Dr. Johanna Barzen
Universität Stuttgart | Institute of Architecture of Application Systems
Universitätsstraße 38, 70569 Stuttgart, Germany, Room: 1.362
johanna.barzen@iaas.uni-stuttgart.de
T +49-711-685-88487
Evangelos Ntentos, M.Sc.
Universität Wien | Research Group Software Architecture
Währingerstraße 29, 1090 Vienna, Austria, Room: 5.40
evangelos.ntentos@univie.ac.at
T +43-1-4277-78545
Markus Fischer, M.Sc.
Universität Stuttgart | Institute of Architecture of Application Systems
Universitätsstraße 38, 70569 Stuttgart, Germany
Dipl.-Ing. Konstantinos Plakidas
Universität Wien | Research Group Software Architecture
Währingerstraße 29, 1090 Vienna, Austria, Room: 5.40
konstantinos.plakidas@univie.ac.at
T +43-1-4277-78524
Dr. Christoph Czepa
Universität Wien | Research Group Software Architecture
Währingerstraße 29, 1090 Vienna, Austria
Amine El Malki, M.Sc. MBA
Universität Wien | Research Group Software Architecture
Währingerstraße 29, 1090 Vienna, Austria, Room: 5.39
amine.elmalki@univie.ac.at
T +43-1-4277-78542
Publications
Amirali Amiri, Schahram Dustdar, Uwe Zdun, André van Hoorn. Automatic Adaptation of Reliability and Performance Trade-Offs in Service- and Cloud-Based Dynamic Routing Architectures. IEEE International Conference on Software Quality, Reliability and Security 2021, 6-10 Dec 2021, Hainan Island, China (2021).
Amirali Amiri, André van Hoorn, Uwe Zdun. Modeling and Empirical Validation of Reliability and Performance Trade-Offs of Dynamic Routing in Service- and Cloud-Based Architectures. IEEE Transactions on Services Computing 2021, ISSN 1939-1374 IEEE (2021).
Amirali Amiri, André van Hoorn, Georg Simhandl, Uwe Zdun. Impact of Service- and Cloud-Based Dynamic Routing Architectures on System Reliability. In: International Conference on Service-Oriented Computing (ICSOC 2020), Dec. 14th – Dec 17th, Dubai, UAE (2020).
Carlos Carrillo, Ioanna Lytra, Rafael Capilla, Uwe Zdun. Quality Attributes Use in Architecture Design Decision Methods: Research and Practice. Computing, 102(2). pp. 551-572, Springer (2020).
Christoph Czepa, Uwe Zdun. On the Understandability of Temporal Properties Formalized in Linear Temporal Logic, Property Specification Patterns and Event Processing Language. IEEE Transactions on Software Engineering (TSE), 46(1). pp. 100-112, IEEE (2020).
Christoph Krieger, Vladimir Yussupov, Michael Falkenthal, Uwe Breitenbücher, Uwe Zdun, Frank Leymann. Monitoring Behavioral Compliance with Architectural Patterns based on Complex Event Processing. In: 28th European Conference on Service-Oriented and Cloud Computing (ESOCC 2020), April 01-03, 2020, Heraklion, Greece (2020).
Michael Wurster, Uwe Breitenbücher, Michael Falkenthal, Christoph Krieger, Frank Leymann, Karoline Saatkamp, Jacopo Soldani. The Essential Deployment Metamodel: A Systematic Review of Deployment Automation Technologies. SICS Software-Intensive Cyber-Physical Systems, 35. pp. 63-75, Springer (2020).
Uwe Zdun, Sebastian Meixner, Daniel Schall, Evangelos Ntentos, Konstantinos Plakidas, Fei Li. Supporting Architectural Decision Making on Data Management in Microservice Architectures. In: 13th European Conference on Software Architecture (ECSA 2019), 9-13 September 2019, Paris, France (2019).
Amine El Malki, Uwe Zdun. Guiding Architectural Decision Making on Service Mesh Based Microservice Architectures. In: 13th European Conference on Software Architecture (ECSA 2019), 9-13 September 2019, Paris France (2019).
Amirali Amiri, Christoph Krieger, Frank Leymann, Uwe Zdun. Dynamic Data Routing Decisions for Compliant Data Handling in Service- and Cloud-Based Architectures: A Performance Analysis. In: IEEE International Conference on Services Computing (IEEE SCC 2019), 8-13 July 2019, Milan, Italy (2019).
Fei Li, Konstantinos Plakidas, Daniel Schall, Uwe Zdun, Evangelos Ntentos, Amine El Malki. On the Design and Architecture of Deployment Pipelines in Cloud- and Service-Based Computing – A Model-Based Qualitative Study. In: IEEE International Conference on Services Computing (SCC 2019), 8-13 July 2019, Milan, Italy (2019).
Christoph Czepa, Uwe Zdun. How Understandable Are Pattern-based Behavioral Constraints for Novice Software Designers? ACM Transactions on Software Engineering and Methodology, 28(2). pp. 11:1-11:38, ACM (2019).
Amirali Amiri, Christoph Czepa, Evangelos Ntentos, Uwe Zdun. Modeling compliance specifications in linear temporal logic, event processing language and property specification patterns: a controlled experiment on understandability. Software and Systems Modeling, 18. pp. 3331-3371, Springer (2019).
Karoline Saatkamp, Uwe Breitenbücher, Oliver Kopp, Frank Leymann. An approach to automatically detect problems in restructured deployment models based on formalizing architecture and design patterns. SICS Software-Intensive Cyber-Physical Systems, 34. pp. 85-97, Springer (2019).
Karoline Saatkamp, Christoph Krieger, Frank Leymann, Julian Sudendorf, Michael Wurster. Application Threat Modeling and Automated VNF Selection for Mitigation using TOSCA. In: International Conference on Networked Systems (NetSys 2019), 18-21 March, Munich, Germany (2019).
Christina Roda, Elena Navarro, Victor Lopez-Jaquero, Georg Simhandl, Uwe Zdun. Past and future of software architectures for context-aware systems: A systematic mapping study. Journal of Systems and Software, 146. pp. 310-355, Elsevier (2018).
Daniel Lübke, Olaf Zimmermann, Cesare Pautasso, Uwe Zdun, Mirko Stocker. Guiding Architectural Decision Making on Quality Aspects in Microservice APIs. In: 16th International Conference on Service-Oriented Computing (ICSOC 2018), 12-15 November 2018, Hangzhou Zhejiang, China (2018).
Ta’id Holmes, Uwe Zdun. Refactoring Architecture Models for Compliance with Custom Requirements. In: ACM/IEEE 21st International Conference on Model Driven Engineering Languages and Systems (MODELS 2018), 14-19 October, Copenhagen, Denmark (2018).
Daniel Schall, Konstantinos Plakidas, Uwe Zdun. Model-Based Support for Decision-Making in Architecture Evolution of Complex Software Systems. In: 12th Workshop on Distributed Software Development, Software Ecosystems and Systems-of-Systems (WDES), collocated with the 12th European Conference on Software Architecture (ECSA 2018), 24-28 September 2018, Madrid, Spain (2018).
Daniel Schall, Konstantinos Plakidas, Uwe Zdun. Software Migration and Architecture Evolution with Industrial Platforms: A Multi-Case Study. In: 12th European Conference on Software Architecture (ECSA 2018), 24-28 September 2018, Madrid, Spain (2018).
Jasmin Guth, Frank Leymann. Towards Pattern-based Rewrite and Refinement of Application Architectures. In: Proceedings of the 12th Advanced Summer School on Service Oriented Computing (SummerSOC 2018), IBM Research Division, 25-30 June, Crete, Greece (2018).
Lukas Harzenetter, Uwe Breitenbücher, Michael Falkenthal, Jasmin Guth, Christoph Krieger, Frank Leymann. Pattern-based Deployment Models and Their Automatic Execution. In: 11th IEEE/ACM International Conference on Utility and Cloud Computing (UCC 2018), 17-20 December, Zurich, Switzerland (2018).
Christoph Krieger, Uwe Breitenbücher, Kálmán Képes, Frank Leymann. An Approach to Automatically Check the Compliance of Declarative Deployment Models. In: Proceedings of the 12th Advanced Summer School on Service Oriented Computing (SummerSOC 2018), IBM Research Division, 25-30 June, Crete, Greece (2018).
Michael Zimmermann, Uwe Breitenbücher, Christoph Krieger, Frank Leymann. Deployment Enforcement Rules for TOSCA-based Applications. In: Proceedings of The Twelfth International Conference on Emerging Security Information, Systems and Technologies (SECURWARE 2018), 16-20 September, Venice, Italy (2018).
Karoline Saatkamp, Uwe Breitenbücher, Oliver Kopp, Frank Leymann. Application Scenarios for Automated Problem Detection in TOSCA Topologies by Formalized Patterns. In: Proceedings of the 12th Advanced Summer School on Service Oriented Computing (SummerSOC 2018), IBM Research Division, 25-30 June, Crete, Greece (2018).
Michael Wurster, Uwe Breitenbücher, Oliver Kopp, Frank Leymann. Modeling and Automated Execution of Application Deployment Tests. In: IEEE 22nd International Enterprise Distributed Object Computing Conference (EDOC 2018), 16-19 October, Stockholm, Sweden (2018).
Frank Leymann, Uwe Zdun, Elena Navarro. Ensuring and Assessing Architecture Conformance to Microservice Decomposition Patterns. In: The 15th International Conference on Service-Oriented Computing (ICSOC 2017), 13-16 November, Spain, Malaga (2017).
Huy Tran, Thanh Tran, Christoph Ruhsam, Erhard Weiss, Uwe Zdun, Christoph Czepa. On the Understandability of Semantic Constraints for Behavioral Software Architecture Compliance: A Controlled Experiment. In: IEEE International Conference on Software Architecture (ICSA 2017), 3-7 April 2017, Gothenburg, Sweden (2017).
Faiz UL Muram, Huy Tran, Uwe Zdun. Towards Containment Checking of Behaviour in Architectural Patterns. In: 22nd European Conference on Pattern Languages of Programs (EuroPLoP 2017), 12-16 July 2017, Irsee in Bavaria, Germany (2017).
Markus Philipp Fischer, Uwe Breitenbücher, Kálmán Képes, Frank Leymann. Towards an Approach for Automatically Checking Compliance Rules in Deployment Models. In: Proceedings of The Eleventh International Conference on Emerging Security Information, Systems and Technologies (SECURWARE 2017), 10-14 September, Rome, Italy (2017).