Dynamic authorisation policies for event-based task delegation

Authors:
Khaled Gaaloul;Ehtesham Zahoor;François Charoy;Claude Godart
Affiliations:
LORIA, Nancy University, UMR, Vandœuvre-lès-Nancy Cedex, France;LORIA, Nancy University, UMR, Vandœuvre-lès-Nancy Cedex, France;LORIA, Nancy University, UMR, Vandœuvre-lès-Nancy Cedex, France;LORIA, Nancy University, UMR, Vandœuvre-lès-Nancy Cedex, France
Venue:
CAiSE'10 Proceedings of the 22nd international conference on Advanced information systems engineering
Year:
2010

Citing 11
Cited 0

A logic-based calculus of events

New Generation Computing
Role-Based Access Control Models

Computer
Specifying and enforcing access control policies for XML document sources

World Wide Web
An Execution Model for Multilevel Seccure Workflows

Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI: Status and Prospects
PBDM: a flexible delegation model in RBAC

Proceedings of the eighth ACM symposium on Access control models and technologies
Framework for role-based delegation models

ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
Supporting conditional delegation in secure workflow management systems

Proceedings of the tenth ACM symposium on Access control models and technologies
Commonsense Reasoning

Commonsense Reasoning
Policy Administration Control and Delegation Using XACML and Delegent

GRID '05 Proceedings of the 6th IEEE/ACM International Workshop on Grid Computing
Towards Proactive Policies Supporting Event-Based Task Delegation

SECURWARE '09 Proceedings of the 2009 Third International Conference on Emerging Security Information, Systems and Technologies
Delegation in role-based access control

ESORICS'06 Proceedings of the 11th European conference on Research in Computer Security

Quantified Score

Hi-index	0.00

Visualization

Abstract

Task delegation presents one of the business process security leitmotifs. It defines a mechanism that bridges the gap between both workflow and access control systems. There are two important issues relating to delegation, namely allowing task delegation to complete, and having a secure delegation within a workflow. Delegation completion and authorisation enforcement are specified under specific constraints. Constraints are defined from the delegation context implying the presence of a fixed set of delegation events to control the delegation execution. In this paper, we aim to reason about delegation events to specify delegation policies dynamically. To that end, we present an event-based task delegation model to monitor the delegation process. We then identify relevant events for authorisation enforcement to specify delegation policies. Moreover, we propose a technique that automates delegation policies using event calculus to control the delegation execution and increase the compliance of all delegation changes in the global policy.