Optimal workflow-aware authorizations

Authors:
David Basin;Samuel J. Burri;Günter Karjoth
Affiliations:
ETH Zurich, Zurich, Switzerland;IBM Research - Zurich & ETH Zurich, Rüschlikon, Switzerland;IBM Research - Zurich, Rüschlikon, Switzerland
Venue:
Proceedings of the 17th ACM symposium on Access Control Models and Technologies
Year:
2012

Citing 14
Cited 3

Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
Workflow Patterns

Distributed and Parallel Databases
A reference monitor for workflow systems with constrained task execution

Proceedings of the tenth ACM symposium on Access control models and technologies
Toward Information Sharing: Benefit And Risk Access Control (BARAC)

POLICY '06 Proceedings of the Seventh IEEE International Workshop on Policies for Distributed Systems and Networks
DW-RBAC: A formal security model of delegation and revocation in workflow systems

Information Systems
Fuzzy Multi-Level Security: An Experiment on Quantified Risk-Adaptive Access Control

SP '07 Proceedings of the 2007 IEEE Symposium on Security and Privacy
Delegation and satisfiability in workflow systems

Proceedings of the 13th ACM symposium on Access control models and technologies
Chromatic Graph Theory

Chromatic Graph Theory
Cobit 4.1

Cobit 4.1
Trading in risk: using markets to improve access control

Proceedings of the 2008 workshop on New security paradigms
Apply Measurable Risk to Strengthen Security of a Role-Based Delegation Supporting Workflow System

POLICY '09 Proceedings of the 2009 IEEE International Symposium on Policies for Distributed Systems and Networks
Satisfiability and Resiliency in Workflow Authorization Systems

ACM Transactions on Information and System Security (TISSEC)
Obstruction-Free Authorization Enforcement: Aligning Security with Business Objectives

CSF '11 Proceedings of the 2011 IEEE 24th Computer Security Foundations Symposium
Applied Information Security: A Hands-on Approach

Applied Information Security: A Hands-on Approach

Dynamic enforcement of abstract separation of duty constraints

ACM Transactions on Information and System Security (TISSEC)
Constraint expressions and workflow satisfiability

Proceedings of the 18th ACM symposium on Access control models and technologies
On the Parameterized Complexity and Kernelization of the Workflow Satisfiability Problem

ACM Transactions on Information and System Security (TISSEC)

Quantified Score

Hi-index	0.00

Visualization

Abstract

Balancing protection and empowerment is a central problem when specifying authorizations. The principle of least privilege, the classical approach to balancing these two conflicting objectives, says that users shall only be authorized to execute the tasks necessary to complete their job. However, when there are multiple authorization policies satisfying least privilege, which one should be chosen? In this paper, we model the tasks that users must execute as workflows, and the risk and cost associated with authorization policies and their administration. We then formulate the balancing of empowerment and protection as an optimization problem: finding a cost-minimizing authorization policy that allows a successful workflow execution. We show that finding an optimal solution for a role-based cost function is NP-complete. We support our results with a series of examples, which we also use to measure the performance of our prototype implementation.