Security-sensitive workflows impose constraints on the controlflow and authorization policies that may lead to unsatisfiable instances. In these cases, it is still possible to find "least bad" executions where costs associated to authorization violations are minimized, solving the so-called Multi-Objective Workflow Satisfiability Problem (MO-WSP). The MO-WSP is inspired by the Valued WSP and its generalization, the Bi-Objective WSP, but our work considers quantitative solutions to the WSP without abstracting control-flow constraints. In this paper, we define variations of the MO-WSP and solve them using bounded model checking and optimization modulo theories solving. We validate our solutions on real-world workflows and show their scalability on synthetic instances.

Solving multi-objectiveworkflow satisfiability problems with optimization modulo theories techniques / Bertolissi, C.; Dos Santos, D. R.; Ranise, S.. - (2018), pp. 117-128. (Intervento presentato al convegno 23rd ACM Symposium on Access Control Models and Technologies, SACMAT 2018 tenutosi a usa nel 2018) [10.1145/3205977.3205982].

Solving multi-objectiveworkflow satisfiability problems with optimization modulo theories techniques

Dos Santos D. R.;Ranise S.
2018-01-01

Abstract

Security-sensitive workflows impose constraints on the controlflow and authorization policies that may lead to unsatisfiable instances. In these cases, it is still possible to find "least bad" executions where costs associated to authorization violations are minimized, solving the so-called Multi-Objective Workflow Satisfiability Problem (MO-WSP). The MO-WSP is inspired by the Valued WSP and its generalization, the Bi-Objective WSP, but our work considers quantitative solutions to the WSP without abstracting control-flow constraints. In this paper, we define variations of the MO-WSP and solve them using bounded model checking and optimization modulo theories solving. We validate our solutions on real-world workflows and show their scalability on synthetic instances.
2018
Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT
1515 BROADWAY, NEW YORK, NY 10036-9998 USA
Association for Computing Machinery
9781450356664
Bertolissi, C.; Dos Santos, D. R.; Ranise, S.
Solving multi-objectiveworkflow satisfiability problems with optimization modulo theories techniques / Bertolissi, C.; Dos Santos, D. R.; Ranise, S.. - (2018), pp. 117-128. (Intervento presentato al convegno 23rd ACM Symposium on Access Control Models and Technologies, SACMAT 2018 tenutosi a usa nel 2018) [10.1145/3205977.3205982].
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11572/333036
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 8
  • ???jsp.display-item.citation.isi??? 8
social impact