Protocol specifications often identify the roles involved in communications. In multiparty protocols that involve task delegation it is often useful to consider settings in which different sites may act on behalf of a single role. It is then crucial to control the roles that the different parties are authorized to represent, including the case in which role authorizations are determined only at runtime. Building on previous work on conversation types with flexible role assignment, here we report initial results on a typed framework for the analysis of multiparty communications with dynamic role authorization and delegation. In the underlying process model, communication prefixes are annotated with role authorizations and authorizations can be passed around. We extend the conversation type system so as to statically distinguish processes that never incur in authorization errors. The proposed static discipline guarantees that processes are always authorized to communicate on behalf of an intended role, also covering the case in which authorizations are dynamically passed around in messages.
[1]
Hugo Torres Vieira,et al.
Conversation types
,
2009,
Theor. Comput. Sci..
[2]
Ilaria Castellani,et al.
Session Types for Access and Information Flow Control
,
2010,
CONCUR.
[3]
Ilaria Castellani,et al.
A Reputation System for Multirole Sessions
,
2011,
TGC.
[4]
Mariangiola Dezani-Ciancaglini,et al.
Types for Role-Based Access Control of Dynamic Web Data
,
2010,
WFLP.
[5]
Eduardo Bonelli,et al.
Correspondence assertions for process synchronization in concurrent communications
,
2005,
J. Funct. Program..
[6]
Ilaria Castellani,et al.
Information Flow Safety in Multiparty Sessions
,
2011
.
[7]
Vasco Thudichum Vasconcelos,et al.
A Type System for Flexible Role Assignment in Multiparty Communicating Systems
,
2012,
TGC.
[8]
Nobuko Yoshida,et al.
Dynamic multirole session types
,
2011,
POPL '11.
[9]
Francesco Tiezzi,et al.
Regulating data exchange in service oriented applications
,
2007,
FSEN'07.