COMPOSE • The University of Passau

Collaborative Open Market to Place Objects at your Service

The COMPSOSE project aims at enabling new services that can seamlessly integrate real and virtual worlds through the convergence of the Internet of Services with the Internet of Things. COMPOSE will achieve this through the provisioning of an open and scalable marketplace infrastructure, in which smart objects are associated to services that can be combined, managed, and integrated in a standardised way to easily and quickly build innovative applications.

The COMPOSE project builds upon existing European research projects and ongoing standardisation activities to provide a comprehensive marketplace framework that will be able to cover the whole service lifecycle by integrating a number of innovative technological enablers in a coherent way. The project will develop novel approaches for virtualising smart objects into services and for managing their interactions. This includes solutions for managing knowledge derivation, for secure and privacy-preserving data aggregation and distribution, and for dynamic service composition advertising and discovering objects' capabilities and service provisioning and monitoring.

The COMPOSE project is expected to give birth to a new business ecosystem, building on the convergence of the Internet of Services with the Internet of Things and the Internet of Content. The COMPOSE marketplace will allow SMEs and innovators to introduce new Internet of Things-enabled services and applications to the market in a short time and with limited upfront investment. At the same time, COMPOSE will allow major European players in the information and communication industry, particularly cloud service providers and telecommunications companies, to reposition themselves within new Internet of Things-enabled value chains.

The COMPOSE project aims to seamlessly integrate the real and the virtual worlds through the creation of an open and scalable Marketplace infrastructure. It will expose services usable by human and virtual users. The combination, integration and management of these services will be done in a standardized and secure way. The general structure of the open Marketplace envisioned for COMPOSE is depicted in the following picture:

Main Compose Objectives

Enabling new services by integrating real and virtual worlds through empowering the Internet of Things
Provisioning of an open and scalable marketplace infrastructure for smart objects, services and innovative applications.
Bridging the Internet of Things to the Internet of Services and ultimately the Internet of Contents.
Promote a new business ecosystem for Small and Medium Enterprises and innovators to introduce new Internet of Things enabled services and applications.

Role of Uni Passau in COMPOSE

Our chair is currently contributing to the design and development of the security framework for COMPOSE. The security mechanisms our group is going to integrate are:

Identification and authentication for applications, users, and objects inside the Marketplace.
Data provenance for the information generated from different entities in COMPOSE.
Trust and reputation mechanism for the service objects, users, and developers.
Novel static, dynamic and hybrid algorithms to analyse inter- and intra-service information flow to guarantee security policies set by the users, developers, and data providers.
Secure service composition and re-configuration
Deploy static analysis in the COMPOSE SDK to support developers to design secure services for the Marketplace.

The COMPOSE consortium comprises twelve partners, including leading ICT companies, recognised academic and research excellence centres, a standardization body, as well as pioneering Small and Medium Enterprises in Internet of Things-based innovative services.

Project Members

Contact

itsec-office@uni-passau.de

2015

10.

D. Schreckling, J. D. Parra Rodriguez and J. Posegga, "Data centric Security for IoT" in {Proc. of 2nd EAI International Conference on IoT as a Service} , Springer , 2015.

9.

P. Fuchs, "DoS Detection in NodeRED" , Bachelor Thesis , IT-Security Group , University of Passau , 2015.
https://web.sec.uni-passau.de/projects/compose/papers/Fuchs_DoS_in_nodeRED.pdf

8.

[English] J. D. Parra Rodriguez, D. Schreckling and J. Posegga, "Identity Management in Platforms Offering IoT as a Service" in Internet of Things. User-Centric IoT , Giaffreda, Raffaele and Vieriu, Radu-Laurentiu and Pasher, Edna and Bendersky, Gabriel and Jara, Antonio J. and Rodrigues, Joel J.P.C. and Dekel, Eliezer and Mandler, Benny, Eds. Springer International Publishing , 2015 , pp. 281-288.
DOI: 10.1007/978-3-319-19656-5_40
http://dx.doi.org/10.1007/978-3-319-19656-5_40

7.

J. D. Parra Rodriguez and J. Posegga, "Why Servers Should Fear their Clients: Abusing Websockets in Browsers for DoS" in Proc. of 11th EAI International Conference on Security and Privacy in Communication Networks (SECURECOMM) , 2015.
https://web.sec.uni-passau.de/papers/2015_Parra-WebSockets.pdf

2013

6.

B. Mandler, F. Antonelli, R. Kleinfeld, C. Pedrinaci, D. Carrera, A. Gugliotta, D. Schreckling, I. Carreras, D. Raggett, M. Pous, C. Vicente Villares and V. Trifa, "COMPOSE - A journey from the Internet of Things to the Internet of Services" in Workshop: Cloud Computing Project and Initiatives - CCPI'13 , Barcelona, Spain , 2013.

4.

R. Wimmer, "Proof-Carrying Android Applications to Validate Data-Centric User Policies" , IT-Security Group , University of Passau , 2013.

2.

D. Schreckling, S. Huber, F. Höhne and J. Posegga, "URANOS: User-Guided Rewriting for Plugin-Enabled ANdroid ApplicatiOn Security" in Proc. of the 7th Workshop in Information Security Theory and Practice (WISTP 2013) , Springer-Verlag , 2013.

1.

D. Hausknecht, "Variability-aware data-flow Analysis for Smartphone Applications" , Software Product-Lines Group and IT-Security Group , University of Passau , 2013.
https://web.sec.uni-passau.de/projects/compose/papers/Hausknecht_Variability_aware_data_flow_analysis_for_Smartphone_Applications.pdf