On the management of user obligations

Murillo Pontual; Omar Chowdhury; William H. Winsborough; Ting Yu; Keith Irwin

doi:10.1145/1998441.1998473

On the management of user obligations

Murillo Pontual^*
, Omar Chowdhury
, William H. Winsborough
, Ting Yu
, Keith Irwin

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

16 Citations (Scopus)

Abstract

This paper is part of a project investigating authorization systems that assign obligations to users. We are particularly interested in obligations that require authorization to be performed and that, when performed, may modify the authorization state. In this context, a user may incur an obligation she is unauthorized to perform. Prior work has introduced a property of the authorization system state that ensures users will be authorized to fulfill their obligations. We call this property accountability because users that fail to perform authorized obligations are accountable for their non-performance. While a reference monitor can mitigate violations of accountability, it cannot prevent them entirely. This paper presents techniques to be used by obligation system managers to restore accountability. We introduce several notions of dependence among pending obligations that must be considered in this process. We also introduce a novel notion we call obligation pool slicing, owing to its similarity to program slicing. An obligation pool slice identifies a set of obligations that the administrator may need to consider when applying strategies proposed here for restoring accountability. The paper also presents the system architecture of an authorization system that incorporates obligations that can require and affect authorizations.

Original language	English
Title of host publication	SACMAT'11 - Proceedings of the 16th ACM Symposium on Access Control Models and Technologies
Pages	175-184
Number of pages	10
DOIs	https://doi.org/10.1145/1998441.1998473
Publication status	Published - 2011
Externally published	Yes
Event	16th ACM Symposium on Access Control Models and Technologies, SACMAT 2011 - Innsbruck, Austria Duration: 15 Jun 2011 → 17 Jun 2011

Publication series

Name	Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

Conference

Conference	16th ACM Symposium on Access Control Models and Technologies, SACMAT 2011
Country/Territory	Austria
City	Innsbruck
Period	15/06/11 → 17/06/11

Keywords

Accountability
Authorization
Obligations
Policy
RBAC

Access to Document

10.1145/1998441.1998473

Cite this

@inproceedings{10434fc3e4c744c18827bc196e184617,

title = "On the management of user obligations",

abstract = "This paper is part of a project investigating authorization systems that assign obligations to users. We are particularly interested in obligations that require authorization to be performed and that, when performed, may modify the authorization state. In this context, a user may incur an obligation she is unauthorized to perform. Prior work has introduced a property of the authorization system state that ensures users will be authorized to fulfill their obligations. We call this property accountability because users that fail to perform authorized obligations are accountable for their non-performance. While a reference monitor can mitigate violations of accountability, it cannot prevent them entirely. This paper presents techniques to be used by obligation system managers to restore accountability. We introduce several notions of dependence among pending obligations that must be considered in this process. We also introduce a novel notion we call obligation pool slicing, owing to its similarity to program slicing. An obligation pool slice identifies a set of obligations that the administrator may need to consider when applying strategies proposed here for restoring accountability. The paper also presents the system architecture of an authorization system that incorporates obligations that can require and affect authorizations.",

keywords = "Accountability, Authorization, Obligations, Policy, RBAC",

author = "Murillo Pontual and Omar Chowdhury and Winsborough, \{William H.\} and Ting Yu and Keith Irwin",

year = "2011",

doi = "10.1145/1998441.1998473",

language = "English",

isbn = "9781450307215",

series = "Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT",

pages = "175--184",

booktitle = "SACMAT'11 - Proceedings of the 16th ACM Symposium on Access Control Models and Technologies",

note = "16th ACM Symposium on Access Control Models and Technologies, SACMAT 2011 ; Conference date: 15-06-2011 Through 17-06-2011",

}

Pontual, M, Chowdhury, O, Winsborough, WH, Yu, T & Irwin, K 2011, On the management of user obligations. in SACMAT'11 - Proceedings of the 16th ACM Symposium on Access Control Models and Technologies. Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT, pp. 175-184, 16th ACM Symposium on Access Control Models and Technologies, SACMAT 2011, Innsbruck, Austria, 15/06/11. https://doi.org/10.1145/1998441.1998473

On the management of user obligations. / Pontual, Murillo; Chowdhury, Omar; Winsborough, William H. et al.
SACMAT'11 - Proceedings of the 16th ACM Symposium on Access Control Models and Technologies. 2011. p. 175-184 (Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - On the management of user obligations

AU - Pontual, Murillo

AU - Chowdhury, Omar

AU - Winsborough, William H.

AU - Yu, Ting

AU - Irwin, Keith

PY - 2011

Y1 - 2011

N2 - This paper is part of a project investigating authorization systems that assign obligations to users. We are particularly interested in obligations that require authorization to be performed and that, when performed, may modify the authorization state. In this context, a user may incur an obligation she is unauthorized to perform. Prior work has introduced a property of the authorization system state that ensures users will be authorized to fulfill their obligations. We call this property accountability because users that fail to perform authorized obligations are accountable for their non-performance. While a reference monitor can mitigate violations of accountability, it cannot prevent them entirely. This paper presents techniques to be used by obligation system managers to restore accountability. We introduce several notions of dependence among pending obligations that must be considered in this process. We also introduce a novel notion we call obligation pool slicing, owing to its similarity to program slicing. An obligation pool slice identifies a set of obligations that the administrator may need to consider when applying strategies proposed here for restoring accountability. The paper also presents the system architecture of an authorization system that incorporates obligations that can require and affect authorizations.

AB - This paper is part of a project investigating authorization systems that assign obligations to users. We are particularly interested in obligations that require authorization to be performed and that, when performed, may modify the authorization state. In this context, a user may incur an obligation she is unauthorized to perform. Prior work has introduced a property of the authorization system state that ensures users will be authorized to fulfill their obligations. We call this property accountability because users that fail to perform authorized obligations are accountable for their non-performance. While a reference monitor can mitigate violations of accountability, it cannot prevent them entirely. This paper presents techniques to be used by obligation system managers to restore accountability. We introduce several notions of dependence among pending obligations that must be considered in this process. We also introduce a novel notion we call obligation pool slicing, owing to its similarity to program slicing. An obligation pool slice identifies a set of obligations that the administrator may need to consider when applying strategies proposed here for restoring accountability. The paper also presents the system architecture of an authorization system that incorporates obligations that can require and affect authorizations.

KW - Accountability

KW - Authorization

KW - Obligations

KW - Policy

KW - RBAC

UR - https://www.scopus.com/pages/publications/79960179819

U2 - 10.1145/1998441.1998473

DO - 10.1145/1998441.1998473

M3 - Conference contribution

AN - SCOPUS:79960179819

SN - 9781450307215

T3 - Proceedings of ACM Symposium on Access Control Models and Technologies, SACMAT

SP - 175

EP - 184

BT - SACMAT'11 - Proceedings of the 16th ACM Symposium on Access Control Models and Technologies

T2 - 16th ACM Symposium on Access Control Models and Technologies, SACMAT 2011

Y2 - 15 June 2011 through 17 June 2011

ER -

On the management of user obligations

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this