Skip to Main content Skip to Navigation
Conference papers

Purpose-Based Policy Enforcement in Actor-Based Systems

Abstract : Preserving data privacy is a challenging issue in distributed systems as private data may be propagated as part of the messages transmitted among system components. We study the problem of preserving data privacy on actor model as a well known reference model for distributed asynchronous systems. Our approach to prevent private data disclosure is to enforce purpose-based privacy policies which control the access and usage of private data. We propose a method to specify purposes based on workflows modeled by Petri nets in which transitions correspond to message communications. We first use model checking to verify whether the actor model behaves conforming to the purpose model. Then, the satisfaction of the policies are checked using data dependence analysis. We also provide a method to evaluate the effectiveness of policies through checking of private data disclosure in the presence of privacy policies. Since these checks are performed statically at design time, no runtime overhead is imposed on the system.
Document type :
Conference papers
Complete list of metadata

Cited literature [21 references]  Display  Hide  Download

https://hal.inria.fr/hal-01760856
Contributor : Hal Ifip <>
Submitted on : Friday, April 6, 2018 - 5:20:52 PM
Last modification on : Monday, September 24, 2018 - 3:30:02 PM

File

459025_1_En_13_Chapter.pdf
Files produced by the author(s)

Licence


Distributed under a Creative Commons Attribution 4.0 International License

Identifiers

Citation

Shahrzad Riahi, Ramtin Khosravi, Fatemeh Ghassemi. Purpose-Based Policy Enforcement in Actor-Based Systems. 7th International Conference on Fundamentals of Software Engineering (FSEN), Apr 2017, Teheran, Iran. pp.196-211, ⟨10.1007/978-3-319-68972-2_13⟩. ⟨hal-01760856⟩

Share

Metrics

Record views

122

Files downloads

78