%0 Conference Proceedings
%T Purpose-Based Policy Enforcement in Actor-Based Systems
%+ University of Tehran
%A Riahi, Shahrzad
%A Khosravi, Ramtin
%A Ghassemi, Fatemeh
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 7th International Conference on Fundamentals of Software Engineering (FSEN)
%C Teheran, Iran
%Y Mehdi Dastani
%Y Marjan Sirjani
%I Springer International Publishing
%3 Fundamentals of Software Engineering
%V LNCS-10522
%P 196-211
%8 2017-04-26
%D 2017
%R 10.1007/978-3-319-68972-2_13
%K Actor-based systems
%K Privacy
%K Purpose
%K Data disclosure
%K Formal verification
%K Rebeca
%Z Computer Science [cs]Conference papers
%X Preserving data privacy is a challenging issue in distributed systems as private data may be propagated as part of the messages transmitted among system components. We study the problem of preserving data privacy on actor model as a well known reference model for distributed asynchronous systems. Our approach to prevent private data disclosure is to enforce purpose-based privacy policies which control the access and usage of private data. We propose a method to specify purposes based on workflows modeled by Petri nets in which transitions correspond to message communications. We first use model checking to verify whether the actor model behaves conforming to the purpose model. Then, the satisfaction of the policies are checked using data dependence analysis. We also provide a method to evaluate the effectiveness of policies through checking of private data disclosure in the presence of privacy policies. Since these checks are performed statically at design time, no runtime overhead is imposed on the system.
%G English
%Z TC 2
%Z WG 2.2
%2 https://inria.hal.science/hal-01760856/document
%2 https://inria.hal.science/hal-01760856/file/459025_1_En_13_Chapter.pdf
%L hal-01760856
%U https://inria.hal.science/hal-01760856
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-TC2
%~ IFIP-WG2-2
%~ IFIP-FSEN
%~ IFIP-LNCS-10522