Title :
Towards Proactive Policies Supporting Event-Based Task Delegation
Author :
Gaaloul, Khaled ; Miseldine, Philip ; Charoy, François
Author_Institution :
SAP Res., Karlsruhe, Germany
Abstract :
Delegation mechanisms are receiving increasing interest from the research community. Task delegation is a mechanism that supports organisational flexibility in the human-centric workflow systems, and ensures delegation of authority in access control systems. In this paper, we consider task delegation as an advanced security mechanism supporting policy decision. We define an approach to support dynamic delegation of authority within an access control framework. The novelty consists of reasoning on authorisation dependently on task delegation events, and specifies them in terms of delegation policies. When one of these events changes, our access policy decision may change proactively implying dynamic delegation of authority. Existing work on access control systems remain stateless and do not consider this perspective. We highlight such limitations, and propose a task delegation framework to support proactive enforcement of delegation policies.
Keywords :
authorisation; workflow management software; access control system; authorisation; event-based task delegation; human-centric workflow system; organisational flexibility; proactive policy; security mechanism; Access control; Authorization; Data security; Decision making; Electronic government; Information security; Permission; Resource management; Workflow management software; Access Control; Delegation; Policy; Workflow;
Conference_Titel :
Emerging Security Information, Systems and Technologies, 2009. SECURWARE '09. Third International Conference on
Conference_Location :
Athens, Glyfada
Print_ISBN :
978-0-7695-3668-2
DOI :
10.1109/SECURWARE.2009.23
