Self-Adaptive Role-Based Access Control for Business Processes

Abstract

We present an approach for dynamically reconfiguring the role-based access control (RBAC) of information systems running business processes, to protect them against insider threats. The new approach uses business process execution traces and stochastic model checking to establish confidence intervals for key measurable attributes of user behaviour, and thus to identify and adaptively demote users who misuse their access permissions maliciously or accidentally. We implemented and evaluated the approach and its policy specification formalism for a real IT support business process, showing their ability to express and apply a broad range of self-adaptive RBAC policies.

Metadata

Item Type:	Proceedings Paper
Authors/Creators:	da Silva, Carlos Eduardo da Silva, Jose Diego Saraiva Paterson, Colin Alexander https://orcid.org/0000-0002-6678-3752 Calinescu, Radu Constantin https://orcid.org/0000-0002-2678-9260
Dates:	Accepted: 2017
Institution:	The University of York
Academic Units:	The University of York > Faculty of Sciences (York) > Computer Science (York)
Depositing User:	Pure (York)
Date Deposited:	10 Mar 2017 16:40
Last Modified:	24 Apr 2025 07:31
Status:	In Press
Publisher:	IEEE
Open Archives Initiative ID (OAI ID):	oai:eprints.whiterose.ac.uk:113454

Download

Accepted Version

Filename: SEAMS_2017_camera_ready.pdf

Description: SEAMS-2017-camera-ready

CLICK TO DOWNLOAD

CORE (COnnecting REpositories)

Self-Adaptive Role-Based Access Control for Business Processes

Abstract

Metadata

Download

Accepted Version

Export

Statistics