Dynamic Authorisation Policies for Event-based Task Delegation

Khaled Gaaloul 1 Ehtesham Zahoor 1 François Charoy 1 Claude Godart 1
1 SCORE - Services and Cooperation
Inria Nancy - Grand Est, LORIA - NSS - Department of Networks, Systems and Services
Abstract : Task delegation presents one of the business process security leitmotifs. It denes a mechanism that bridges the gap between both workfow and access control systems. There are two important issues relating to delegation, namely allowing task delegation to complete, and having a secure delegation within a workfow. Delegation completion and authorisation enforcement are specied under specic constraints. Constraints are dened from the delegation context implying the presence of a xed set of delegation events to control the delegation execution. In this paper, we aim to reason about delegation events to specify delegation policies dynamically. To that end, we present an event-based task delegation model to monitor the delegation process. We then identify relevant events for authorisation enforcement to specify delegation policies. Moreover, we propose a technique that automates delegation policies using event calculus to control the delegation execution and increase the compliance of all delegation changes in the global policy.
Type de document :
Communication dans un congrès
The 22nd International Conference on Advanced Information Systems Engineering - CAiSE'10, Jun 2010, Hammamet, Tunisia. 2010
Liste complète des métadonnées

Littérature citée [14 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00466220
Contributeur : François Charoy <>
Soumis le : mardi 23 mars 2010 - 10:25:01
Dernière modification le : jeudi 11 janvier 2018 - 06:23:13
Document(s) archivé(s) le : vendredi 19 octobre 2012 - 10:25:47

Fichier

kgaaloul_caise10.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00466220, version 1

Collections

Citation

Khaled Gaaloul, Ehtesham Zahoor, François Charoy, Claude Godart. Dynamic Authorisation Policies for Event-based Task Delegation. The 22nd International Conference on Advanced Information Systems Engineering - CAiSE'10, Jun 2010, Hammamet, Tunisia. 2010. 〈inria-00466220〉

Partager

Métriques

Consultations de la notice

248

Téléchargements de fichiers

207