Toggle Main Menu Toggle Search

Open Access padlockePrints

Impact of Policy Design on Workflow Resiliency Computation Time

Lookup NU author(s): Dr John Mace, Dr Charles Morisset, Professor Aad van Moorsel



Workflows are complex operational processes that include security constraints restricting which users can perform which tasks. An improper user-task assignment may prevent the completion of the workflow, and deciding such an assignment at runtime is known to be complex, especially when considering user unavailability (known as the resiliency problem). Therefore, design tools are required that allow fast evaluation of workflow resiliency. In this paper, we propose a methodology for workflow designers to assess the impact of the security policy on computing the resiliency of a workflow. Our approach relies on encoding a workflow into the probabilistic model-checker PRISM, allowing its resiliency to be evaluated by solving a Markov Decision Process. We observe and illustrate that adding or removing some constraints has a clear impact on the resiliency computation time, and we compute the set of security constraints that can be artificially added to a security policy in order to reduce the computation time while maintaining the resiliency.

Publication metadata

Author(s): Mace J, Morisset C, van Moorsel A

Publication type: Report

Publication status: Published

Series Title: School of Computing Science Technical Report Series

Year: 2015

Pages: 25

Print publication date: 01/05/2015

Report Number: 1469

Institution: School of Computing Science, University of Newcastle upon Tyne

Place Published: Newcastle upon Tyne