Controlling break-the-glass through alignment

Onderzoeksoutput: Hoofdstuk in Boek/Rapport/CongresprocedureConferentiebijdrageAcademicpeer review

35 Citaten (Scopus)
2 Downloads (Pure)

Samenvatting

Modern IT systems have to deal with unpredictable situations and exceptions more and more often. In contrast, security mechanisms are usually very rigid. Functionality like break-the-glass is thus employed to allow users to bypass security mechanisms in case of emergencies. However, break-the-glass introduces a weak point in the system. In this paper, we present a flexible framework for controlling the use of break-the-glass using the notion of alignments. The framework measures to what extent a process execution diverges from the specification (i.e., using optimal alignments) and revokes the exceptional permissions granted to cope with the emergency when the severity of deviations cannot be tolerated. For the quantification of the severity of deviations, we extend alignment-based deviation analysis techniques by supporting the detection of high-level deviations such as activity replacements and swaps, hence providing a more accurate diagnosis of deviations than classical optimal alignments.
Originele taal-2Engels
Titel2013 International Conference on Social Computing (SocialCom)
Plaats van productiePiscataway
UitgeverijInstitute of Electrical and Electronics Engineers
Pagina's606-611
Aantal pagina's6
ISBN van geprinte versie978-0-7695-5137-1
DOI's
StatusGepubliceerd - 2013
Evenementconference; 2013 ASE/IEEE International Conference on Social Computing -
Duur: 1 jan. 2013 → …

Congres

Congresconference; 2013 ASE/IEEE International Conference on Social Computing
Periode1/01/13 → …
Ander2013 ASE/IEEE International Conference on Social Computing

Vingerafdruk

Duik in de onderzoeksthema's van 'Controlling break-the-glass through alignment'. Samen vormen ze een unieke vingerafdruk.

Citeer dit