Affiliation:
1. ETH Zurich, Switzerland
2. ETH Zurich and IBM Research -- Zurich, Switzerland
3. IBM Research -- Zurich, Switzerland
Abstract
Separation of Duties (SoD) aims at preventing fraud and errors by distributing tasks and associated authorizations among multiple users. Li and Wang [2008] proposed an algebra (SoDA) for specifying SoD requirements, which is both expressive in the requirements it formalizes and abstract in that it is not bound to a workflow model. In this article, we bridge the gap between the specification of SoD constraints modeled in SoDA and their enforcement in a dynamic, service-oriented enterprise environment. We proceed by generalizing SoDA's semantics to traces, modeling workflow executions that satisfy the respective SoDA terms. We then refine the set of traces induced by a SoDA term to also account for a workflow's control-flow and role-based authorizations. Our formalization, which is based on the process algebra CSP, supports the enforcement of SoD on general workflows and handles changing role assignments during workflow execution, addressing a well-known source of fraud.
The resulting CSP model serves as blueprint for a distributed and loosely coupled architecture where SoD enforcement is provisioned as a service. This concept, which we call SoD as a Service, facilitates a separation of concerns between business experts and security professionals. As a result, integration and configuration efforts are minimized and enterprises can quickly adapt to organizational, regulatory, and technological changes. We describe an implementation of SoD as a Service, which combines commercial components such as a workflow engine with newly developed components such as an SoD enforcement monitor. To evaluate our design decisions and to demonstrate the feasibility of our approach, we present a case study of a drug dispensation workflow deployed in a hospital.
Funder
Seventh Framework Programme
Publisher
Association for Computing Machinery (ACM)
Subject
Safety, Risk, Reliability and Quality,General Computer Science
Reference42 articles.
1. Agrawal A. Amend M. Das M. etal 2007. WS-BPEL extension for people (BPEL4People) v. 1.0. http://download.boulder.ibm.com/ibmdl/pub/software/dru/specs/ws-bpel4people/BPEL4people_v1.pdf. Agrawal A. Amend M. Das M. et al. 2007. WS-BPEL extension for people (BPEL4People) v. 1.0. http://download.boulder.ibm.com/ibmdl/pub/software/dru/specs/ws-bpel4people/BPEL4people_v1.pdf.
2. Alves A. Arkin A. Askary S. Bloch B. Curbera F. etal 2007. Web services business process execution language (BPEL) v. 2.0. OASIS Standard. http://docs.oasis-open.org/wsbpel/2.0/OS/wsbpel-v2.0-OS.html. Alves A. Arkin A. Askary S. Bloch B. Curbera F. et al. 2007. Web services business process execution language (BPEL) v. 2.0. OASIS Standard. http://docs.oasis-open.org/wsbpel/2.0/OS/wsbpel-v2.0-OS.html.
3. Anderson A. 2005. Hierarchical resource profile of XACML v.2.0. OASIS Standard. http://docs.oasis-open. org/xacml/2.0/access_control-xacml-2.0-hier-profile-spec-os.pdf. Anderson A. 2005. Hierarchical resource profile of XACML v.2.0. OASIS Standard. http://docs.oasis-open. org/xacml/2.0/access_control-xacml-2.0-hier-profile-spec-os.pdf.
4. Basin D. Burri S. J. and
Karjoth G
.
2009
. Dynamic enforcement of abstract separation of duty constraints. In Proceedings of the 14th European Symposium on Research in Computer Security (ESORICS'09). M. Backes and P. Ning Eds. Lecture Notes in Computer Science vol.
5789 Springer 250--267. Basin D. Burri S. J. and Karjoth G. 2009. Dynamic enforcement of abstract separation of duty constraints. In Proceedings of the 14 th European Symposium on Research in Computer Security (ESORICS'09). M. Backes and P. Ning Eds. Lecture Notes in Computer Science vol. 5789 Springer 250--267.
Cited by
18 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献