Apply Measurable Risk to Strengthen Security of a Role-Based Delegation Supporting Workflow System

机译：适用可衡量的风险以加强基于角色的代表团支持工作流系统的安全性

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Workflow systems often use delegation to enhance the flexibility of authorization. However, using delegation also weakens security because users may have difficulties understand and design correct delegation policies. In this paper, we propose the Measurable Risk Adaptive Role-based Delegation (MRARD) framework to address this problem.MRARD employs measurable risk for SSOs (System Security Officers) to provide a complementary protection mechanism in role-based delegation supporting workflow systems. In MRARD, when another enterprise user wants to use a delegated role to execute a task, a fuzzy logic based inference processor will infer the risk level. Based on simple risk adaptive decision policies, a decision module will determine whether the access should be granted under a certain risk mitigation action.

机译：工作流系统通常使用委派来增强授权的灵活性。但是，使用代表团也削弱了安全性，因为用户可能遇到困难和设计正确的委派政策。在本文中，我们提出了可衡量的风险自适应角色的授权（MRARD）框架来解决这个问题.MRARD为SSOS（系统安全官员）采用可衡量的风险，以提供基于角色的代表团支持工作流系统的互补保护机制。在MRARD中，当另一个企业用户想要使用委派角色执行任务时，基于模糊的基于逻辑的推断处理器将推断风险级别。基于简单的风险自适应决策策略，决策模块将确定是否应在某种风险缓解行动下授予访问权限。

著录项

来源
《IEEE International Symposium on Policies for Distributed Systems and Networks》|2009年||共8页
会议地点
作者

展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TN915.07-53;
关键词
authorisation; fuzzy logic; inference mechanisms; risk analysis; workflow management software; authorization; complementary protection mechanism; delegation policy; fuzzy logic based inference processor; measurable risk adaptive role-based delegation framework; risk adaptive decision policy; risk mitigation action; role-based delegation supporting workflow system; system security officers; Fuzzy Set; Measurable Risk; Role-based Delegation; Workflow;

机译：授权;模糊逻辑;推理机制;风险分析;工作流程管理软件;授权;互补保护机制;代表团基于逻辑的推理处理器;可测量的风险基于角色的代表团框架;风险自适应决策政策;风险缓解行动;基于角色的代表团支持工作流程系统;系统保安人员;模糊套;可衡量的风险;基于角色的委派;工作流程;

相似文献

外文文献
中文文献
专利

1. Role-based authorizations for workflow systems in support of task-based separation of duty [J] . Liu DR, Wu MY, Lee ST The Journal of Systems and Software . 2004,第3期

机译：工作流系统的基于角色的授权，以支持基于任务的职责分离
2. DW-RBAC: A formal security model of delegation and revocation in workflow systems [J] . Jacques Wainer, Akhil Kumar, Paulo Barthelmess Information Systems . 2007,第3期

机译：DW-RBAC：工作流系统中委派和吊销的正式安全模型
3. Supporting Conditional Delegation in Secure Workflow Management Systems [J] . Vijayalakshmi Atluri, Janice Warner ACM Symposium on Access Control Models and Technologies . 2005,第6期

机译：在安全工作流管理系统中支持条件委派
4. Apply Measurable Risk to Strengthen Security of a Role-Based Delegation Supporting Workflow System [C] . IEEE International Symposium on Policies for Distributed Systems and Networks . 2009

机译：适用可衡量的风险以加强基于角色的代表团支持工作流系统的安全性
5. Role-Based Access Control Administration of Security Policies and Policy Conflict Resolution in Distributed Systems. [D] . Kibwage, Stephen Sakawa. 2015

机译：分布式系统中基于角色的访问控制安全策略管理和策略冲突解决。
6. Health Information System Role-Based Access Control Current Security Trends and Challenges [O] . Marcelo Antonio de Carvalho Junior, Paulo Bandiera-Paiva 2018

机译：健康信息系统基于角色的访问控制当前的安全趋势和挑战
7. Supporting Delegation in Secure Workflow Management Systems [O] . Vijayalakshmi Atluri, Elisa Bertino, Elena Ferrari, 2004

机译：支持委派安全工作流管理系统

Apply Measurable Risk to Strengthen Security of a Role-Based Delegation Supporting Workflow System

摘要

著录项

相似文献

相关主题

期刊订阅