A Semantic Based Execution Model for Multilevel Secure Workflows (1998) [5 citations — 1 self]

Download:

by Vijayalakshmi Atluri, Wei-kuang Huang, Elisa Bertino

Journal of Computer Security

http://cimic.rutgers.edu/~atluri/jcs00a.ps

Add To MetaCart

Popular Tags

No tags have been applied to this document.

BibTeX | Add To MetaCart

@ARTICLE{Atluri98asemantic,
    author = {Vijayalakshmi Atluri and Wei-kuang Huang and Elisa Bertino},
    title = {A Semantic Based Execution Model for Multilevel Secure Workflows},
    journal = {Journal of Computer Security},
    year = {1998},
    volume = {8},
    pages = {3--41}
}

Abstract:

Workflow management systems (WFMS) support the modeling and coordinated execution of processes within an organization. To coordinate the execution of the various activities (or tasks) in a workflow, task dependencies are specified among them. As advances in workflow management take place, they are also required to support security. In a multilevel secure (MLS) workflow, tasks may belong to di#erent security levels. Ensuring the dependencies from the tasks at higher security levels to those at lower security levels (high-to-low dependencies) may compromise security. In this paper, we consider such MLS workflows and show how they can be executed in a secure and correct manner. Our approach is based on semantic classification of the task dependencies that examines the source of the task dependencies. We classify the high-to-low dependencies in several ways: conflicting versus conflict-free, result-independent versus result-dependent, strong versus weak, and abortive versus non-abortive. We propose algorithms to automatically redesign the workflow and demonstrate that only a small subset among all the types of high-to-low dependencies requires to be executed by trusted subjects and all other types can be executed without compromising security. The solutions proposed in this paper are directly applicable to another relevant area of research--- execution of multilevel transactions in multilevel secure databases since the atomicity requirements

Citations

477	An Overview of Workflow Management: From Process Modeling to Workflow Automation Infrastructure. Distributed and Parallel Databases – Georgakopoulos, Hornick, et al. - 1995
432	Security policy and security models – Goguen, Meseguer - 1982
115	K.: Database Transaction Models For Advanced Applications – Elmagarmid - 1992
79	Advanced Transaction Models in Workflow Contexts – Alonso, Agrawal, et al. - 1996
46	4 pump for rapid, reliable, secure communication – Kang, Moskowitz - 1993
35	Covert channels - Here to stay – Moskowitz, Kang - 1994
29	A practical and modular method to implement extended transaction models – Barga, Pu - 1995
28	Using Polytransactions to Manage Interdependent Data, Database Transaction Models for Advanced Applications – Sheth, Rusinkiewicz, et al. - 1992
11	Chrysanthis and Krithi Ramamritham. Acta: A framework for specifying and reasoning about transaction structure and behavior – Panos - 1990
4	A Semantic Based Redesigning of Distributed Workflows – Atluri, Huang, et al. - 1998

View or Download | Add to My Collection | Correct Errors