fit-2011 presentation (dynamic collaborations)
TRANSCRIPT
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 1/15
Dynamic Collaborations for InformationSharing Within and Across Virtual Teams
9th International Conference on Frontiers of Information Technology
(FIT 2011): 19 December 2011
by
Dr. Ahmad Kamran Malik
Co-author: Prof. Schahram Dustdar
Distributed Systems Group, Institute of Information Systems,
Vienna University of Technology (TU-Wien),
Vienna, Austria
http://www.infosys.tuwien.ac.at/staff/kamran/
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 2/15
Sharing Control (Scenario)Entities, Priorities, context & Collaborative Relationships
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 3/15
Dynamic Collaborations
Temporary collaborations
Handled using task User-based collaboration: (C is collaboration)
Intra-team (sub-team) inter-team(disjoint team)
Team-based collaboration (inter-team):
Union (super-team) intersection (common team)
Team C Team1 Team2
Team1 Team2
C
Team1 Team2C
C
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 4/15
Dynamic Sharing & Privacy-aware RBACCore (DySP-RBAC) Model
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 5/15
Assignment Relations
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 6/15
Session mappings (permissions)
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 7/15
Hierarchical DySP-RBAC Model
Reduces number of permission assignments
Hierarchies in DySP-RBAC
Role hierarchy (Permission inheritance)
Team hierarchy (User & Task inheritance)
Task hierarchy (User & Role inheritance)
Collaborative Relationship hierarchy (Permission inheritance)
Access Level hierarchy (Permission inheritance)
Object hierarchy (Permission inheritance)
Purpose hierarchy (Permission inheritance)
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 8/15
Constrained DySP-RBAC Model
Enforce higher-level organizational policies
Separation of Duty (SoD) constraints
Separates sensitive combination of duties
Design time (SSD) & runtime (DSD)
Prevent fraud or error
Static Separation of Duty (SSD) constraints
User-Role User-Team
Team-Task Task-Role
Dynamic Separation of Duty (DSD) constraints Role, team, & task activation
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 9/15
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 10/15
Collaborative Relationships &level of response
RBAC model responses Dynamic Sharing control model responses
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 11/15
Conclusion
Contributions Dynamic Sharing and Privacy-aware RBAC model
Enhanced sharing & owner-controlled sharing
Sharing and privacy rules & conflict handling
Future work Consumer information sharing scenarios
Mapping schemes for incompatible roles across theenterprises
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 12/15
Thank you
Q&A
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 13/15
Dynamic Sharing Calculations
“Dynamic Sharing” is calculated at runtime
Describes level of sharing
Dynamic Sharing uses:
Personal relationship = (Personal trust + access history) / 2 Personal trust is user input number (0..1)
Access history = (no. of positive accesses / total no. of accesses)
Dynamic collaboration uses entity & personal relationships (role + team + task + enterprise + personal relationship) / 5
Static access level (is found in SPPA)
Context value (from collaborative-context configuration file)
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 14/15
Aggregate Sharing Level
8/3/2019 FIT-2011 Presentation (Dynamic Collaborations)
http://slidepdf.com/reader/full/fit-2011-presentation-dynamic-collaborations 15/15
Individual Sharing level