Decentralised and Collaborative Auditing of Workflows

Nehme, Antonio and Jesus, Vitor and Mahbub, Khaled and Abdallah, Ali E. (2019) Decentralised and Collaborative Auditing of Workflows. In: 16th International Conference on Trust, Privacy and Security in Digital Business - TrustBus 2019, August 26 - 29, 2019, Linz, Austria. (In Press)

This is the latest version of this item.

[img]
Preview
Text
Decentralised and Collaborative Auditing of Workflows.pdf

Download (6MB)

Abstract

Workflows involve actions and decision making at the level of each participant. Trusted generation, collection and storage of evidence is fundamental for these systems to assert accountability in case of disputes. Ensuring the security of audit systems requires reliable protection of evidence in order to cope with its confidentiality, its integrity at generation and storage phases, as well as its availability. Collusion with an audit authority is a threat that can affect all these security aspects, and there is room for improvement in existent approaches that target this problem.
This work presents an approach for workflow auditing which targets security challenges of collusion-related threats, covers different trust and confidentiality requirements, and offers flexible levels of scrutiny for reported events. It relies on participants verifying each other's reported audit data, and introduces a secure mechanism to share encrypted audit trails with participants while protecting their confidentiality. We discuss the adequacy of our audit approach to produce reliable evidence despite possible collusion to destroy, tamper with, or hide evidence.

Item Type: Conference or Workshop Item (Paper)
Subjects: G400 Computer Science
G500 Information Systems
G600 Software Engineering
G900 Others in Mathematical and Computing Sciences
Divisions: Faculty of Computing, Engineering and the Built Environment
Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology
Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology > Cyber Security
REF UoA Output Collections > REF2021 UoA11: Computer Science and Informatics
Depositing User: Antonio Nehme
Date Deposited: 22 Jun 2019 05:38
Last Modified: 22 Jun 2019 05:38
URI: http://www.open-access.bcu.ac.uk/id/eprint/7621

Available Versions of this Item

Actions (login required)

View Item View Item

Research

In this section...