Decentralised and Collaborative Auditing of Workflows

Nehme, Antonio and Jesus, Vitor and Mahbub, Khaled and Abdallah, Ali E. (2019) Decentralised and Collaborative Auditing of Workflows. In: 16th International Conference on Trust, Privacy and Security in Digital Business - TrustBus 2019, August 26 - 29, 2019, Linz, Austria.

This is the latest version of this item.

Decentralised and Collaborative Auditing of Workflows.pdf

Download (6MB)


Workflows involve actions and decision making at the level of each participant. Trusted generation, collection and storage of evidence is fundamental for these systems to assert accountability in case of disputes. Ensuring the security of audit systems requires reliable protection of evidence in order to cope with its confidentiality, its integrity at generation and storage phases, as well as its availability. Collusion with an audit authority is a threat that can affect all these security aspects, and there is room for improvement in existent approaches that target this problem.
This work presents an approach for workflow auditing which targets security challenges of collusion-related threats, covers different trust and confidentiality requirements, and offers flexible levels of scrutiny for reported events. It relies on participants verifying each other's reported audit data, and introduces a secure mechanism to share encrypted audit trails with participants while protecting their confidentiality. We discuss the adequacy of our audit approach to produce reliable evidence despite possible collusion to destroy, tamper with, or hide evidence.

Item Type: Conference or Workshop Item (Paper)
26 May 2019Accepted
2 August 2019Published Online
Uncontrolled Keywords: Audit trails, confidentiality, accountability, collusion
Subjects: CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science
CAH11 - computing > CAH11-01 - computing > CAH11-01-03 - information systems
CAH11 - computing > CAH11-01 - computing > CAH11-01-04 - software engineering
Divisions: Faculty of Computing, Engineering and the Built Environment
Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology
Depositing User: Antonio Nehme
Date Deposited: 22 Jun 2019 05:38
Last Modified: 22 Mar 2023 12:01

Available Versions of this Item

  • Decentralised and Collaborative Auditing of Workflows. (deposited 22 Jun 2019 05:38) [Currently Displayed]

Actions (login required)

View Item View Item


In this section...