A formal model for soft enforcement: Influencing the decision-maker

Morisset, C; Yevseyeva, I; Gross, T; van, Moorsel, A

doi:10.1007/978-3-319-11851-2_8

A formal model for soft enforcement: Influencing the decision-maker

Lookup NU author(s): Dr Charles Morisset, Dr Iryna Yevseyeva, Professor Thomas Gross ORCiD, Professor Aad van Moorsel

Downloads

Full text for this publication is not currently held within this repository. Alternative links are provided below where available.

Abstract

© Springer International Publishing Switzerland 2014.We propose in this paper a formal model for soft enforcement, where a decision-maker is influenced towards a decision, rather than forced to select that decision. This novel type of enforcement is particularly useful when the policy enforcer cannot fully control the environment of the decision-maker, as we illustrate in the context of attribute-based access control, by limiting the control over attributes. We also show that soft enforcement can improve the security of the system when the influencer is uncertain about the environment, and when neither forcing the decision-maker nor leaving them make their own selection is optimal. We define the general notion of optimal influencing policy, that takes into account both the control of the influencer and the uncertainty in the system.