Purpose-Based Policy Enforcement in Actor-Based Systems - Fundamentals of Software Engineering
Conference Papers Year : 2017

Purpose-Based Policy Enforcement in Actor-Based Systems

Shahrzad Riahi
  • Function : Author
  • PersonId : 1030386
Ramtin Khosravi
  • Function : Author
  • PersonId : 999434
Fatemeh Ghassemi
  • Function : Author
  • PersonId : 999433

Abstract

Preserving data privacy is a challenging issue in distributed systems as private data may be propagated as part of the messages transmitted among system components. We study the problem of preserving data privacy on actor model as a well known reference model for distributed asynchronous systems. Our approach to prevent private data disclosure is to enforce purpose-based privacy policies which control the access and usage of private data. We propose a method to specify purposes based on workflows modeled by Petri nets in which transitions correspond to message communications. We first use model checking to verify whether the actor model behaves conforming to the purpose model. Then, the satisfaction of the policies are checked using data dependence analysis. We also provide a method to evaluate the effectiveness of policies through checking of private data disclosure in the presence of privacy policies. Since these checks are performed statically at design time, no runtime overhead is imposed on the system.
Fichier principal
Vignette du fichier
459025_1_En_13_Chapter.pdf (939.68 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-01760856 , version 1 (06-04-2018)

Licence

Identifiers

Cite

Shahrzad Riahi, Ramtin Khosravi, Fatemeh Ghassemi. Purpose-Based Policy Enforcement in Actor-Based Systems. 7th International Conference on Fundamentals of Software Engineering (FSEN), Apr 2017, Teheran, Iran. pp.196-211, ⟨10.1007/978-3-319-68972-2_13⟩. ⟨hal-01760856⟩
73 View
139 Download

Altmetric

Share

More