Analyzing Separation of Duties Constraints with a Probabilistic Model Checker

Mendt, Tamara; Sinz, Carsten; Tveretina, Olga

doi:10.1007/978-3-642-25370-6_3

Tamara Mendt^9,10,11,
Carsten Sinz⁹ &
Olga Tveretina⁹

Part of the book series: Lecture Notes in Business Information Processing ((LNBIP,volume 97))

Included in the following conference series:

International Conference on Business Information Systems

885 Accesses
1 Citations

Abstract

Separation of Duties (SoD) is the concept that conflicting activities cannot be assigned to the same individual. A goal of SoD is to separate roles and responsibilities to reduce the risk of fraud or error. We consider the problem of verifying SoD constraints in the presence of uncertain information. We demonsrate the feasibility of implementing probabilistic model checking in a business process design with a case study. Modeling and verification is done with the probabilistic model checker PRISM.

This work was supported in part by the “Concept for the Future” of Karlsruhe Institute of Technology within the framework of the German Excellence Initiative.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Knorr, K., Weidner, H.: Analyzing separation of duties in petri net workflows. In: MMM-ACNS, pp. 102–114 (2001)
Google Scholar
Lawrence, L.G.: The role of roles. Computers and Security 12(1), 15–21 (1993)
Article Google Scholar
Mendt, T., Sinz, C., Tveretina, O.: Probabilistic Model Checking of Constraints in a Supply Chain Business Process. In: Abramowicz, W. (ed.) BIS 2011. LNBIP, vol. 87, pp. 1–12. Springer, Heidelberg (2011)
Chapter Google Scholar
Wynn, M.T., Verbeek, H.M.W., Aalst, W.M.P., Ter Hofstede, A.H.M., Edmond, D.: Business process verification - finally a reality! Business Process Management Journal 15(1), 74–92 (2007)
Article Google Scholar
Janssen, W., Mateescu, R., Mauw, S., Springintveld, J.: Verifying business processes using spin. In: Proceedings of the 4th International SPIN Workshop, pp. 21–36 (1998)
Google Scholar
Janssen, W., Mateescu, R., Mauw, S., Fennema, P., van der Stappen, P.: Model Checking for Managers. In: Dams, D.R., Gerth, R., Leue, S., Massink, M. (eds.) SPIN 1999. LNCS, vol. 1680, pp. 92–107. Springer, Heidelberg (1999)
Chapter Google Scholar
El Kharbili, M., de Medeiros, A.K.A., Stein, S., van der Aalst, W.M.P.: Business process compliance checking: Current state and future challenges. In: Modellierung Betrieblicher Informationssysteme (MobIS 2008). LNI, vol. 141, pp. 107–113 (2008)
Google Scholar
Lu, R., Sadiq, S., Governatori, G., Yang, X.: Defining Adaptation Constraints for Business Process Variants. In: Abramowicz, W. (ed.) Business Information Systems. LNBIP, vol. 21, pp. 145–156. Springer, Heidelberg (2009)
Chapter Google Scholar
Ly, L.T., Göser, K., Rinderle-Ma, S., Dadam, P.: Compliance of semantic constraints - a requirements analysis for process management systems. In: 1st Int’l Workshop on Governance, Risk and Compliance - Applications in Information Systems, Montpellier, France (2008)
Google Scholar
Schaad, A., Lotz, V., Sohr, K.: A model-checking approach to analysing organisational controls in a loan origination process. In: SACMAT 2006: Proceedings of the Eleventh ACM Symposium on Access Control Models and Technologies, pp. 139–149. ACM, New York (2006)
Chapter Google Scholar
Armando, A., Ponta, S.: Model checking of security-sensitive business processes (2010)
Google Scholar
Clarke, E.M., Emerson, E.A., Sistla, A.P.: Automatic verification of finite-state concurrent systems using temporal logic specifications. ACM Trans. Program. Lang. Syst. 8(2), 244–263 (1986)
Article Google Scholar
Kwiatkowska, M., Norman, G., Parker, D.: Stochastic Model Checking. In: Bernardo, M., Hillston, J. (eds.) SFM 2007. LNCS, vol. 4486, pp. 220–270. Springer, Heidelberg (2007)
Chapter Google Scholar
PRISM website (2010), http://www.prismmodelchecker.org
Baier, C., Katoen, J.-P.: Principles of model checking. MIT Press (2008)
Google Scholar

Download references

Author information

Authors and Affiliations

Institute for Theoretical Computer Science, Karlsruhe Institute of Technology, Germany
Tamara Mendt, Carsten Sinz & Olga Tveretina
SAP Research Center, Karlsruhe, Germany
Tamara Mendt
Universidad Simón Bolívar, Venezuela
Tamara Mendt

Authors

Tamara Mendt
View author publications
You can also search for this author in PubMed Google Scholar
Carsten Sinz
View author publications
You can also search for this author in PubMed Google Scholar
Olga Tveretina
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Poznań University of Economics, Al. Niepodległości 10, 60-161, Poznań, Poland
Witold Abramowicz
Division of Information and Communication Sciences Department of Computing, Macquarie University, 2109, Sydney, NSW, Australia
Leszek Maciaszek
Poznań University of Economics, Al. Niepodległości 10, 60-967, Poznań, Poland
Krzysztof Węcel

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Mendt, T., Sinz, C., Tveretina, O. (2011). Analyzing Separation of Duties Constraints with a Probabilistic Model Checker. In: Abramowicz, W., Maciaszek, L., Węcel, K. (eds) Business Information Systems Workshops. BIS 2011. Lecture Notes in Business Information Processing, vol 97. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-25370-6_3

Download citation

DOI: https://doi.org/10.1007/978-3-642-25370-6_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-25369-0
Online ISBN: 978-3-642-25370-6
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics