Risk-based Auto-Delegation for Probabilistic Availability

Abstract : Dynamic and evolving systems might require exible access control mechanisms, in order to make sure that the unavailability of some users does not prevent the system to be functional, in particular for emergency-prone environments, such as healthcare, natural disaster response teams, or military systems. The auto-delegation mechanism, which combines the strengths of delegation systems and \break-the- glass" policies, was recently introduced to handle such situations, by stating that the most quali ed available user for a resource can access this resource. In this work we extend this mechanism by considering availability as a quantitative measure, such that each user is associated with a probability of availability. The decision to allow or deny an access is based on the utility of each outcome and on a risk strategy. We describe a generic framework allowing a system designer to de ne these dierent concepts. We also illustrate our framework with two speci c use cases inspired from healthcare systems and resource management systems.
Type de document :
Communication dans un congrès
4th International Workshop on Autonomous and Spontateous Security (SETOP), Sep 2011, Leuven, Belgium. 2011
Liste complète des métadonnées

Littérature citée [28 références]  Voir  Masquer  Télécharger

Contributeur : Emmanuelle Grousset <>
Soumis le : lundi 22 août 2011 - 15:47:56
Dernière modification le : mardi 26 février 2019 - 10:54:02
Document(s) archivé(s) le : lundi 12 novembre 2012 - 15:42:37


Fichiers produits par l'(les) auteur(s)


  • HAL Id : inria-00616450, version 1



Leanid Krautsevic, Fabio Martinelli, Charles Morisset, Yautsiukhin Artsiom. Risk-based Auto-Delegation for Probabilistic Availability. 4th International Workshop on Autonomous and Spontateous Security (SETOP), Sep 2011, Leuven, Belgium. 2011. 〈inria-00616450〉



Consultations de la notice


Téléchargements de fichiers