on delegation and
play

On Delegation and Concluding remarks Workflow Execution Models - PowerPoint PPT Presentation

Dec 28, 2022 •304 likes •575 views

Introduction WDEM UDEM On Delegation and Concluding remarks Workflow Execution Models Questions Jason Crampton Hemanth Khambhammettu Information Security Group Royal Holloway, University of London SAC 2008 One-Page Overview

  1. Introduction WDEM UDEM On Delegation and Concluding remarks Workflow Execution Models Questions Jason Crampton Hemanth Khambhammettu Information Security Group Royal Holloway, University of London SAC 2008

  2. One-Page Overview Introduction WDEM UDEM Concluding remarks Delegation is of increasing interest in workflow management Questions systems (WfMSs) ◮ There are a number of execution models for computerized workflows ◮ There are a number of different types of delegation

  3. One-Page Overview Introduction WDEM UDEM Concluding remarks Delegation is of increasing interest in workflow management Questions systems (WfMSs) ◮ There are a number of execution models for computerized workflows ◮ There are a number of different types of delegation How do these various factors affect delegation in WfMSs?

  4. Workflows and Authorization Introduction WDEM A workflow specification is a partially ordered set of (abstract) UDEM tasks Concluding ◮ A WfMS instantiates the workflow specification to create remarks Questions a workflow instance

  5. Workflows and Authorization Introduction WDEM A workflow specification is a partially ordered set of (abstract) UDEM tasks Concluding ◮ A WfMS instantiates the workflow specification to create remarks Questions a workflow instance Authorization information determines which users can perform which tasks ◮ Typically specified using access control lists or role-based access control data structures ◮ Users are authorized for abstract tasks ◮ A user may execute a concrete task in a given workflow instance if she is authorized for the corresponding abstract task

  6. Workflow Execution Models Introduction WDEM UDEM WfMS-driven execution model (WDEM) Concluding remarks ◮ WfMS assigns tasks to users on basis of authorization Questions information ◮ User performs the task that has been assigned User-driven execution model (UDEM) ◮ Users initiate (access) requests to perform tasks ◮ A reference monitor decides whether the user is authorized to perform the task

  7. Delegation of Access Rights Introduction WDEM UDEM ◮ A user may delegate an access right r for which he is Concluding authorized remarks Questions ◮ Delegation of access rights may take two forms: grant and transfer Delegation Delegatee is Delegator is operation authorized for r authorized for r ✓ ✓ Grant ✓ ✗ Transfer

  8. Delegation in Workflow Systems Introduction WDEM UDEM Concluding remarks Questions ◮ Abstract task delegation authorizes the delegatee to perform the delegated task in any workflow instance

  9. Delegation in Workflow Systems Introduction WDEM UDEM Concluding remarks Questions ◮ Abstract task delegation authorizes the delegatee to perform the delegated task in any workflow instance ◮ Concrete task delegation authorizes the delegatee to perform the delegated task only in the specified workflow instance

  10. Problem Statement and Motivation Introduction WDEM UDEM Concluding ◮ What does delegation mean in a workflow system? remarks Questions ◮ What is the effect of a successful delegation operation?

  11. Problem Statement and Motivation Introduction WDEM UDEM Concluding ◮ What does delegation mean in a workflow system? remarks Questions ◮ What is the effect of a successful delegation operation? ◮ The answer may depend on ◮ the workflow execution model (WDEM or UDEM) ◮ the type (abstract or concrete) of the delegated task ◮ the type (grant or transfer) of the delegation operation

  12. Problem Statement and Motivation Introduction WDEM UDEM Concluding ◮ What does delegation mean in a workflow system? remarks Questions ◮ What is the effect of a successful delegation operation? ◮ The answer may depend on ◮ the workflow execution model (WDEM or UDEM) ◮ the type (abstract or concrete) of the delegated task ◮ the type (grant or transfer) of the delegation operation ◮ Existing work does not distinguish between execution models and only considers grant operations

  13. Introduction Introduction WDEM UDEM Concluding remarks WDEM Questions UDEM Concluding remarks Questions

  14. Tasklists Introduction When a workflow specification is instantiated a tasklist is WDEM generated for the workflow instance UDEM Concluding ◮ A tasklist is a list of user-task pairs remarks ◮ A user is obliged to execute tasks to which she has been Questions assigned There are two different ways in which tasklists may be managed ◮ The tasklist may be completely determined when the workflow is instantiated (static tasklists) ◮ Entries for pending tasks are appended at runtime (dynamic tasklists) Tasklist management has no effect on delegation (unless constraints exist on task execution . . . )

  15. Delegation of Concrete Tasks Introduction WDEM UDEM Concluding In WDEM each concrete task is assigned to a single user who remarks is obliged to perform that task Questions ◮ Grant delegations can not occur A user may transfer a concrete task to which she is assigned ◮ The delegatee is required to perform the task ◮ The effect of a transfer of a concrete task is to update the tasklist

  16. Delegation of Abstract Tasks: Authorization Introduction WDEM Authorization for abstract tasks may be granted or transferred UDEM ◮ If the (abstract) task is granted then both delegatee and Concluding remarks delegator may be assigned a concrete instance of that task Questions in a tasklist ◮ If the task is transferred then only the delegatee may be assigned that task in a tasklist Successful abstract task delegation must update the authorization information ◮ The delegatee is now authorized for the task ◮ The delegator may not be authorized (depending on whether it was a grant or a transfer)

  17. Delegation of Abstract Tasks: Tasklists Introduction WDEM UDEM Concluding Instances of the delegated abstract task may have been remarks assigned to the delegator Questions ◮ What should happen to such task assignments if the delegation is a transfer? ◮ A cascading transfer delegation transfers all existing assignments to the delegatee ◮ A non-cascading transfer delegation causes the delegator to retain all existing assignments

  18. Summary Introduction Task type Operation Update Update WDEM UDEM Tasklist Authorization Concluding Concrete Transfer Y N remarks Abstract Grant N Y Questions Abstract Transfer N Y Abstract TransferCasc Y Y 1. Concrete tasks can only be transferred and authorization information does not change 2. Abstract tasks may be granted or transferred and authorization information always changes 3. Cascading transfer changes tasklists

  19. Introduction Introduction WDEM UDEM Concluding remarks WDEM Questions UDEM Concluding remarks Questions

  20. Introduction Introduction WDEM UDEM Concluding remarks Tasks are not assigned to users by the WfMS Questions ◮ The WfMS maintains a list of pending tasks ◮ Users select tasks to perform ◮ The WfMS includes a reference monitor that decides whether the user is authorized to perform the task

  21. Delegation Introduction WDEM UDEM Concluding remarks There are no tasklists Questions ◮ Delegation of concrete tasks is meaningless ◮ Cascading transfer of abstract tasks is meaningless A user may delegate an abstract task ◮ Grant and transfer are supported ◮ Grant and transfer both update authorization information

  22. Introduction Introduction WDEM UDEM Concluding remarks WDEM Questions UDEM Concluding remarks Questions

  23. Summary of Delegation Effects Introduction Delegation WDEM UDEM WDEM operation UDEM Abstract Concrete Abstract Concluding remarks u retains t n/a retains t Grant Questions v gains t n/a gains t loses t ; Cascading transfers t n/a u transfers all t transfer gains t ; receives t n/a v receives all t loses t ; Non- u n/a loses t retains all t cascading gains t ; transfer v n/a gains t does not receive t t = abstract task; t = concrete task; u = delegator; v = delegatee

  24. Contributions and Observations Introduction WDEM UDEM This work represents the first attempt to consider the effect of Concluding different types of delegation on authorization information and remarks tasklists in WfMS Questions ◮ Not conceptually deep, mainly preparatory work ◮ Does highlight the differences between different types of delegation and different execution models ◮ Part of larger programme of work to consider the effect of delegation on workflow satisfiability The paper also includes delegation of roles in WfMSs that employ role-based access control

  25. Ongoing and Future Work Introduction Consider authorization constraints, delegation and workflow WDEM satisfiability UDEM ◮ Execution of pairs of tasks is constrained in some way Concluding remarks (separation of duty, binding of duty, etc.) Questions ◮ Does permitting a concrete task delegation prevent completion of the workflow instance? ◮ Does permitting an abstract task delegation render workflow specification unsatisfiable? ◮ See “On Delegation and Workflow Satisfiability” (to appear in SACMAT 2008) Revocation and workflow satisfiability ◮ Does permitting a revocation request affect workflow satisfiability?

  26. Introduction Introduction WDEM UDEM Concluding remarks WDEM Questions UDEM Concluding remarks Questions

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

DELEGATION readysetpresent.com Delegation Program Objectives ( 1 of 3 ) Understand the

DELEGATION readysetpresent.com Delegation Program Objectives ( 1 of 3 ) Understand the

DELEGATION readysetpresent.com Delegation Program Objectives ( 1 of 3 ) Understand the benefits of delegation. Define delegation, and identify its benefits and uses. Explain the basic methods involved in successful delegation. Explore the

1.79k views • 149 slides
Delegation in Role-Based Access Control Controlling delegation Enforcing transfer delegation

Delegation in Role-Based Access Control Controlling delegation Enforcing transfer delegation

Introduction Delegation operations in hierarchical RBAC Delegation in Role-Based Access Control Controlling delegation Enforcing transfer delegation Jason Crampton Hemanth Khambhammettu semantics Conclusion Information Security

959 views • 57 slides
Delegation: Delegation: Responsibilities of the Responsibilities of the Nurse Nurse Joyce

Delegation: Delegation: Responsibilities of the Responsibilities of the Nurse Nurse Joyce

Delegation: Delegation: Responsibilities of the Responsibilities of the Nurse Nurse Joyce Winstead, MSN, RN , FRE Mission Statement Mission Statement The mission of the North Carolina Board of Nursing is to protect the public by

388 views • 12 slides
Nurse Delegation Updates May 12 th 2020 Doris Barret RN Marlo Moss RN CONTRACT CHANGE DSHS MUST

Nurse Delegation Updates May 12 th 2020 Doris Barret RN Marlo Moss RN CONTRACT CHANGE DSHS MUST

Nurse Delegation Updates May 12 th 2020 Doris Barret RN Marlo Moss RN CONTRACT CHANGE DSHS MUST BE LISTED AS AN ADDITIONAL INSURED ON ALL NURSE DELEGATION CONTRACTS EMERGENCY RULES NURSE DELEGATION Nurse Delegation Emergency Rules 1. Basic

309 views • 6 slides
Delegation procedure: lack of transparency Delegation procedure: lack of transparency or European

Delegation procedure: lack of transparency Delegation procedure: lack of transparency or European

Brussels, 26th May 2015 Delegation procedure: lack of transparency Delegation procedure: lack of transparency or European democracy at risk? or European democracy at risk? Daniel Guguen Delineation between delegated and implementing acts?

61 views • 5 slides
DNS Session 4: Delegation and Reverse DNS Joe Abley AfNOG 2012, Serekunda,

DNS Session 4: Delegation and Reverse DNS Joe Abley AfNOG 2012, Serekunda,

DNS Session 4: Delegation and Reverse DNS Joe Abley AfNOG 2012, Serekunda, The Gambia Delegation How do you delegate a subdomain? In principle straightforward: just insert NS records for the sub-domain, pointing

456 views • 29 slides
Memory Delegation Kai-Min Chung Feng-Hao Liu . Cornell University

Memory Delegation Kai-Min Chung Feng-Hao Liu . Cornell University

Memory Delegation Kai-Min Chung Feng-Hao Liu . Cornell University Brown University . Yael Kalai Ran Raz. Microsoft Research Weizmann Inst. of Science . 1 Delegation

775 views • 22 slides
Delegation with Endogenous States Dino Gerardi Lucas Maestri Ignacio Monzn (Collegio Carlo

Delegation with Endogenous States Dino Gerardi Lucas Maestri Ignacio Monzn (Collegio Carlo

Delegation with Endogenous States Dino Gerardi Lucas Maestri Ignacio Monzn (Collegio Carlo Alberto) (FGV EPGE) (Collegio Carlo Alberto) University of Bonn - October 23rd, 2019 Introduction Delegation Delegation problems are

977 views • 39 slides
A solution for Access Delegation based on SAML Ciro Formisano Ermanno Travaglino Isabel

A solution for Access Delegation based on SAML Ciro Formisano Ermanno Travaglino Isabel

A solution for Access Delegation based on SAML Ciro Formisano Ermanno Travaglino Isabel Matranga Access Delegation in distributed environments SAML 2.0 Condition to Delegate Implementation Future plans Access Delegation in distributed

666 views • 18 slides
GENERAL CONFERENCE DELEGATION REPORT Your Delegation CHAIR: Elisa Gatz VICE CHAIR: Alka

GENERAL CONFERENCE DELEGATION REPORT Your Delegation CHAIR: Elisa Gatz VICE CHAIR: Alka

GENERAL CONFERENCE DELEGATION REPORT Your Delegation CHAIR: Elisa Gatz VICE CHAIR: Alka Lyall LAY DELEGATES: Lonnie Chafin, Irma Clark, Elisa Gatz CLERGY DELEGATES: Alka Lyall, Gregory Gross, Chris Pierson ALTERNATES: LAY:

372 views • 8 slides
Dynamic Delegation of Experimentation Yingni Guo Northwestern University ngni Guo (NU)

Dynamic Delegation of Experimentation Yingni Guo Northwestern University ngni Guo (NU)

Dynamic Delegation of Experimentation Yingni Guo Northwestern University ngni Guo (NU) Delegation of Experimentation 1 / 55 Introduction Delegating Experimentation I study how to manage innovation in a hierarchical organization. A principal

1.68k views • 119 slides
Delegation of Nursing Services in Schools; An Independent Practice Setting November 6, 2016

Delegation of Nursing Services in Schools; An Independent Practice Setting November 6, 2016

Delegation of Nursing Services in Schools; An Independent Practice Setting November 6, 2016 Julie Lindley, MSN, RN Dallas, Texas Privileged and Confidential Delegation Objectives: The learner will be able to identify the appropriate rule to

404 views • 29 slides
DNS Session 4: Delegation and Reverse DNS SANOG 16 July 15 - 19 th 2010 Paro, Bhutan Phil

DNS Session 4: Delegation and Reverse DNS SANOG 16 July 15 - 19 th 2010 Paro, Bhutan Phil

DNS Session 4: Delegation and Reverse DNS SANOG 16 July 15 - 19 th 2010 Paro, Bhutan Phil Regnauld Delegation How do you delegate a subdomain? In principle straightforward: just insert NS records for the sub-domain, pointing at

917 views • 30 slides
TRANSNET SOC LTD AND TRANSNET PORT TERMINALS - Visit by delegation from H E Mr. Andr Kimbuta,

TRANSNET SOC LTD AND TRANSNET PORT TERMINALS - Visit by delegation from H E Mr. Andr Kimbuta,

TRANSNET SOC LTD AND TRANSNET PORT TERMINALS - Visit by delegation from H E Mr. Andr Kimbuta, Governor of Kinshasa, DRC and his delegation 6 August 2013 TABLE OF CONTENTS TRANSNET SOC LTD TRANSNET DIVISIONS MARKET DEMAND STRATEGY PORT

1.06k views • 63 slides
DSA BOF #DebConf16 Agenda delegation membership looking back moving forward

DSA BOF #DebConf16 Agenda delegation membership looking back moving forward

DSA BOF #DebConf16 Agenda delegation membership looking back moving forward service requirements port requirements port status contact us Delegation (what do we do) Maintaining the user database (LDAP).

452 views • 13 slides
Special Education Advisory Committee (SEAC) Delegation and Presentation Protocol Updated August

Special Education Advisory Committee (SEAC) Delegation and Presentation Protocol Updated August

Special Education Advisory Committee (SEAC) Delegation and Presentation Protocol Updated August 2012 Definitions A delegation includes a representative or representatives of a group or organization, who form a deputation to present

65 views • 3 slides
Indonesias LNG Updates Embassy of the Republic of Indonesia Washington DC, United States

Indonesias LNG Updates Embassy of the Republic of Indonesia Washington DC, United States

Indonesias LNG Updates Embassy of the Republic of Indonesia Washington DC, United States Thank You

440 views • 14 slides
(DoFA) DoFA Presentation 24 September 2018 Agenda/Contents 1 Objective, Purpose & Key

(DoFA) DoFA Presentation 24 September 2018 Agenda/Contents 1 Objective, Purpose & Key

Delegation of Financial Authority (DoFA) DoFA Presentation 24 September 2018 Agenda/Contents 1 Objective, Purpose & Key Principles 2 Duties & Responsibilities 3 Consultation Process & Policy Operators 4 Examples 5

1.44k views • 20 slides
HR Delegations Implementation Presentation Raelene Eves Deputy Director Human Resources 26

HR Delegations Implementation Presentation Raelene Eves Deputy Director Human Resources 26

HR Delegations Implementation Presentation Raelene Eves Deputy Director Human Resources 26 & 29 May 2017 Presentation Overview Part 1: Overview of HR Delegations Part 2: In-depth view of Process changes 2 Part 1: Overview of HR

368 views • 36 slides
Town of Bancroft Delegation Request Form Date: ___________________ Name of Delegate(s):

Town of Bancroft Delegation Request Form Date: ___________________ Name of Delegate(s):

Town of Bancroft Delegation Request Form Date: ___________________ Name of Delegate(s): (1)___________________________________________________ (2)___________________________________________________ Name of Group represented (if

412 views • 6 slides
How to supercharge a team with delegation (Dr.) James Stanier @jstanier FW: Market share

How to supercharge a team with delegation (Dr.) James Stanier @jstanier FW: Market share

How to supercharge a team with delegation (Dr.) James Stanier @jstanier FW: Market share ceo@techgiants.com fyi ------------------- From: cs@techgiants.com To: ceo@techgiants.com We really need better dashboards @jstanier [9:00] how's

737 views • 39 slides
Welcome to the delegation from the Republic of Korea Chris Roberts Director Overseas Students

Welcome to the delegation from the Republic of Korea Chris Roberts Director Overseas Students

Welcome to the delegation from the Republic of Korea Chris Roberts Director Overseas Students Ombudsman (OSO) Is a specialist function within the Commonwealth Ombudsman office It is one of the industry ombudsman functions of the

420 views • 13 slides
2019 World Conference Delegate Preparation and Legislation Review Chesapeake Bay (USA) Mission

2019 World Conference Delegate Preparation and Legislation Review Chesapeake Bay (USA) Mission

2019 World Conference Delegate Preparation and Legislation Review Chesapeake Bay (USA) Mission Center February 12, 26 and March 12 8:30 9:30 p.m. www.cofchrist-cbmc.org (click Calendar for details) Meeting Etiquette Identify

558 views • 24 slides
Research Finance Tri-Council Financial Monitoring Review Delegation of Signing Authority

Research Finance Tri-Council Financial Monitoring Review Delegation of Signing Authority

Research Finance Tri-Council Financial Monitoring Review Delegation of Signing Authority Tri-Council Financial Administration Research Finance Tri-Council Financial Monitoring Review Results Research Finance Overview

635 views • 31 slides

More recommend