A paradigm for security enforcement in CapBasED-AMS

The CapBasED-AMS (CAPability-BASed and Event-Driven Activity Management System) deals with the management and execution of activities. A problem-solving agent (PSA) is a human, a hardware system or a software system having the ability to execute activities. An activity consists of multiple interdependent tasks that need to be coordinated, scheduled and executed by a set of PSAs. Since security is an essential and integral part of activities, the activity management system has to manage and execute the activities in a secure way. In the CapBasED-AMS, threats such as unauthorized access or modification are identified as events. The security pilferage or illegal violation of privacy through the accessing of specification-time, compile-time or run-time data from the activity management system and the PSAs is monitored, controlled and reported. We present a secure CapBasED-AMS by taking into consideration: the system infrastructure; secure match-making with additional security constraints; security policies and a secure PSA; the task coordination model for security resource control from the PSA viewpoint, the organization viewpoint, the task viewpoint and the activity viewpoint by adapting a role-based resource security model; and secure execution of tasks with the PSA role-based security model