论文信息 - WRAD: Tool Support for Workflow Resiliency Analysis and Design

WRAD: Tool Support for Workflow Resiliency Analysis and Design

Designing efficient workflows is complex especially when considering security constraints that restrict which users can perform which tasks. This is further exacerbated when considering users could become unavailable at runtime, which is known as the workflow resiliency problem. Ideally, designers undertake resiliency analysis at the design stage so that the likely impact of security constraints on a workflow can be assessed before its execution. In this paper, we describe a new tool called Workflow Resiliency Analysis and Design (WRAD) which automatically encodes a textual description of a workflow into the probabilistic model-checker PRISM, and carries out a resiliency evaluation. WRAD also computes optimal change sets for security constraints to assure a given resiliency threshold is reached.

Charles Morisset | Aad P. A. van Moorsel | John C. Mace | A. Moorsel | C. Morisset

[1] Gregory Gutin,et al. An Approach to Parameterized Resiliency Problems Using Integer Linear Programming , 2016, ArXiv.

[2] Marta Z. Kwiatkowska,et al. PRISM 4.0: Verification of Probabilistic Real-Time Systems , 2011, CAV.

[3] Charles Morisset,et al. Quantitative Workflow Resiliency , 2014, ESORICS.

[4] Silvio Ranise,et al. Modular Synthesis of Enforcement Mechanisms for the Workflow Satisfiability Problem: Scalability and Reusability , 2016, SACMAT.

[5] Charles Morisset,et al. Resiliency Variance in Workflows with Choice , 2015, SERENE.

[6] Charles Morisset,et al. Modelling user availability in workflow resiliency analysis , 2015, HotSoS.

[7] Ronald A. Howard,et al. Dynamic Programming and Markov Processes , 1960 .

[8] Charles Morisset,et al. Impact of Policy Design on Workflow Resiliency Computation Time , 2015, QEST.

[9] Ninghui Li,et al. Satisfiability and Resiliency in Workflow Authorization Systems , 2010, TSEC.

[10] Amit P. Sheth,et al. An overview of workflow management: From process modeling to workflow automation infrastructure , 1995, Distributed and Parallel Databases.