Abstract

In workflows and business processes, there are often security requirements on both the data, i.e. confidentiality and integrity, and the process, e.g. separation of duty. Graphical notations exist for specifying both workflows and associated security requirements. We present an approach for formally verifying that a workflow satisfies such security requirements. For this purpose, we define the semantics of a workflow as a state-event system and formalise security properties in a trace-based way, i.e. on an abstract level without depending on details of enforcement mechanisms such as Role-Based Access Control (RBAC). This formal model then allows us to build upon well-known verification techniques for information flow control. We describe how a compositional verification methodology for possibilistic information flow can be adapted to verify that a specification of a distributed workflow management system satisfies security requirements on both data and processes.

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
Information flow control for workflow management systems
Thomas Bauereiß ... Dieter Hutter
it - Information Technology | VOL. 56
Thomas Bauereiß, et. al.Thomas Bauereiß ... Dieter Hutter
30 Nov 2014
Research on the Tracking Algorithm of Program Level Fine-grained Data based on Cloud Virtual Environment
Hongyi Zhang ... Zhigang Zhang
-
Hongyi Zhang, et. al.Hongyi Zhang ... Zhigang Zhang
01 Jan 2015
Role-Based Risk Adaptive Access Control Model
Dan Hua Huang ... Ya Qian Yang
Applied Mechanics and Materials | VOL. 416-417
Dan Hua Huang, et. al.Dan Hua Huang ... Ya Qian Yang
01 Sep 2013
A semi-automated BPMN-based framework for detecting conflicts between security, data-minimization, and fairness requirements
Qusai Ramadan ... Jan Jürjens
Software and Systems Modeling | VOL. 19
Qusai Ramadan, et. al.Qusai Ramadan ... Jan Jürjens
07 Feb 2020
View more papers

More From: Electronic Proceedings in Theoretical Computer Science

Paper Title
Journal
Date
Author
Efficient Performance Analysis of Modular Rewritable Petri Nets
Lorenzo Capra ... Marco Gribaudo
Electronic Proceedings in Theoretical Computer Science | VOL. 410
Lorenzo Capra, et. al.Lorenzo Capra ... Marco Gribaudo
31 Oct 2024
Leveraging Slither and Interval Analysis to build a Static Analysis Tool
Stefan-Claudiu Susan
Electronic Proceedings in Theoretical Computer Science | VOL. 410
Stefan-Claudiu SusanStefan-Claudiu Susan
31 Oct 2024
Intuitionistic Propositional Logic in Lean
Dafina Trufaş
Electronic Proceedings in Theoretical Computer Science | VOL. 410
Dafina TrufaşDafina Trufaş
31 Oct 2024
Static Analysis Framework for Detecting Use-After-Free Bugs in C++
Vlad-Alexandru Teodorescu ... Dorel Lucanu
Electronic Proceedings in Theoretical Computer Science | VOL. 410
Vlad-Alexandru Teodorescu, et. al.Vlad-Alexandru Teodorescu ... Dorel Lucanu
31 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.