Decentralised and Collaborative Auditing of Workflows
Nehme, Antonio and Jesus, Vitor and Mahbub, Khaled and Abdallah, Ali E. (2019) Decentralised and Collaborative Auditing of Workflows. In: 16th International Conference on Trust, Privacy and Security in Digital Business - TrustBus 2019, August 26 - 29, 2019, Linz, Austria.
This is the latest version of this item.
|
Text
Decentralised and Collaborative Auditing of Workflows.pdf Download (6MB) |
Abstract
Workflows involve actions and decision making at the level of each participant. Trusted generation, collection and storage of evidence is fundamental for these systems to assert accountability in case of disputes. Ensuring the security of audit systems requires reliable protection of evidence in order to cope with its confidentiality, its integrity at generation and storage phases, as well as its availability. Collusion with an audit authority is a threat that can affect all these security aspects, and there is room for improvement in existent approaches that target this problem.
This work presents an approach for workflow auditing which targets security challenges of collusion-related threats, covers different trust and confidentiality requirements, and offers flexible levels of scrutiny for reported events. It relies on participants verifying each other's reported audit data, and introduces a secure mechanism to share encrypted audit trails with participants while protecting their confidentiality. We discuss the adequacy of our audit approach to produce reliable evidence despite possible collusion to destroy, tamper with, or hide evidence.
Item Type: | Conference or Workshop Item (Paper) | ||||||
---|---|---|---|---|---|---|---|
Dates: |
|
||||||
Uncontrolled Keywords: | Audit trails, confidentiality, accountability, collusion | ||||||
Subjects: | CAH11 - computing > CAH11-01 - computing > CAH11-01-01 - computer science CAH11 - computing > CAH11-01 - computing > CAH11-01-03 - information systems CAH11 - computing > CAH11-01 - computing > CAH11-01-04 - software engineering |
||||||
Divisions: | Faculty of Computing, Engineering and the Built Environment Faculty of Computing, Engineering and the Built Environment > School of Computing and Digital Technology |
||||||
Depositing User: | Antonio Nehme | ||||||
Date Deposited: | 22 Jun 2019 05:38 | ||||||
Last Modified: | 22 Mar 2023 12:01 | ||||||
URI: | https://www.open-access.bcu.ac.uk/id/eprint/7621 |
Available Versions of this Item
- Decentralised and Collaborative Auditing of Workflows. (deposited 22 Jun 2019 05:38) [Currently Displayed]
Actions (login required)
View Item |