A logical framework for reasoning about delegation policies in workflow management systems

Khaled Gaaloul 1, 2, * Erik Proper 2 Ehtesham Zahoor 1 François Charoy 1 Claude Godart 1
* Auteur correspondant
1 SCORE - Services and Cooperation
Inria Nancy - Grand Est, LORIA - NSS - Department of Networks, Systems and Services
2 CRP Henri Tudor
CRP Henri Tudor - Centre de Recherche Public Henri Tudor [Headquarters]
Abstract : Task delegation presents one of the business process security leitmotifs. It defines a mechanism that bridges the gap between workflow and access control systems. Delegation completion and authorisation enforcement are specified under specific constraints so-called events. In this article, we aim to reason about delegation events to model task delegation and to specify delegation policies using a logical framework. To that end, we propose an event-based task delegation model to control the delegation execution. We then identify relevant events responsible for the dynamic enforcement of delegation policies. Further, we define a task-oriented access control model to specify delegation constraints into authorisation policies. Finally, we propose a technique to automate the delegation policies integration. Using event calculus, we develop a reasoning tool to control the delegation execution and to increase the compliance of all delegation changes in the existing policy of the workflow.
Type de document :
Article dans une revue
International Journal of Information and Computer Security, Inderscience, 2011, 4 (4), pp.365-388. 〈10.1504/IJICS.2011.044825〉
Liste complète des métadonnées

Littérature citée [26 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-00677854
Contributeur : François Charoy <>
Soumis le : jeudi 13 septembre 2012 - 07:00:03
Dernière modification le : jeudi 11 janvier 2018 - 06:23:13
Document(s) archivé(s) le : vendredi 14 décembre 2012 - 02:25:10

Fichier

IJICS040405_GAALOUL.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

Collections

Citation

Khaled Gaaloul, Erik Proper, Ehtesham Zahoor, François Charoy, Claude Godart. A logical framework for reasoning about delegation policies in workflow management systems. International Journal of Information and Computer Security, Inderscience, 2011, 4 (4), pp.365-388. 〈10.1504/IJICS.2011.044825〉. 〈hal-00677854〉

Partager

Métriques

Consultations de la notice

255

Téléchargements de fichiers

252