Self-Adaptive Role-Based Access Control for Business Processes

机译：基于自适应的业务流程的访问控制

获取原文

获取外文期刊封面目录资料

页面导航

摘要
著录项
引文网络
相似文献
相关主题

摘要

We present an approach for dynamically reconfiguring the role-based access control (RBAC) of information systems running business processes, to protect them against insider threats. The new approach uses business process execution traces and stochastic model checking to establish confidence intervals for key measurable attributes of user behaviour, and thus to identify and adaptively demote users who misuse their access permissions maliciously or accidentally. We implemented and evaluated the approach and its policy specification formalism for a real IT support business process, showing their ability to express and apply a broad range of self-adaptive RBAC policies.

机译：我们提出了一种方法，用于动态重新配置运行业务流程的信息系统的基于角色的访问控制（RBAC），以保护它们免受内幕威胁。新方法使用业务流程执行迹线和随机模型检查来建立用户行为的关键可测量属性的置信区间，从而识别和自适应地贬低恶意或意外地滥用访问权限的用户。我们实施并评估了该方法及其政策规范形式主义，以实现实际支持业务流程，展示其表达和应用广泛的自适应RBAC政策的能力。

著录项

来源
《IEEE/ACM International Symposium on Software Engineering for Adaptive and Self-Managing Systems》|2017年|204p|共11页
会议地点
作者
Carlos Eduardo da Silva; José Diego Saraiva da Silva; Colin Paterson; Radu Calinescu;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP311.5-53;
关键词
Business; Probabilistic logic; Access control; Model checking; Information systems; Markov processes; Probability;

机译：业务;概率逻辑;访问控制;模型检查;信息系统;马尔可夫进程;概率;

相似文献

外文文献
中文文献
专利

1. Evaluation of an Enhanced Role-Based Access Control model to manage information access in collaborative processes for a statewide clinical education program [J] . Xuan Hung Le, Terry Doll, Monica Barbosu, Journal of biomedical informatics. . 2014,第Null期

机译：评估增强的基于角色的访问控制模型以管理州级临床教育计划协作过程中的信息访问
2. Intelligent Role-Based Access Control Model and Framework Using Semantic Business Roles in Multi-Domain Environments [J] . Ghazal Rubina, Malik Ahmad Kamran, Qadeer Nauman, Quality Control, Transactions . 2020,第期

机译：基于智能角色的访问控制模型和框架在多域环境中使用语义业务角色
3. New role-based access control in ubiquitous e-business environment [J] . Sejong Oh Journal of Intelligent Manufacturing . 2010,第5期

机译：无所不在的电子商务环境中基于角色的新访问控制
4. Self-Adaptive Role-Based Access Control for Business Processes [C] . Carlos Eduardo da Silva, José Diego Saraiva da Silva, Colin Paterson, International Symposium on Software Engineering for Adaptive and Self-Managing Systems . 2017

机译：业务流程的基于角色的自适应访问控制
5. A specification for an extensible access control Web service featuring access control lists and role-based access control models. [D] . Garcia, Andres. 2004

机译：具有访问控制列表和基于角色的访问控制模型的可扩展访问控制Web服务的规范。
6. A Role-Based Access Control Model in Modbus SCADA Systems. A Centralized Model Approach [O] . Santiago Figueroa-Lorenzo, Javier Añorga, Saioa Arrizabalaga 2019

机译：Modbus SCADA系统中的基于角色的访问控制模型。集中模型方法
7. Self-Adaptive Role-Based Access Control for Business Processes [O] . da Silva Carlos Eduardo, da Silva Jose Diego Saraiva, Paterson Colin Alexander, 2017

机译：业务流程的自适应基于角色的访问控制

Self-Adaptive Role-Based Access Control for Business Processes

摘要

著录项

引文网络

相似文献

相关主题

期刊订阅