Modelling Quality of Protection in Outsourced Business Processes

Manchester, United Kingdom August 29-August 31

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/IAS.2007.70

2007 The Third International Symposiu ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Fabio Massacci Articles by Artsiom Yautsiukhin

	ASCII Text	x
	Fabio Massacci, Artsiom Yautsiukhin, "Modelling Quality of Protection in Outsourced Business Processes," Information Assurance and Security, International Symposium on, pp. 247-252, 2007 The Third International Symposium on Information Assurance and Security, 2007.

	BibTex	x
	@article{ 10.1109/IAS.2007.70, author = {Fabio Massacci and Artsiom Yautsiukhin}, title = {Modelling Quality of Protection in Outsourced Business Processes}, journal ={Information Assurance and Security, International Symposium on}, volume = {0}, year = {2007}, isbn = {0-7695-2876-7}, pages = {247-252}, doi = {http://doi.ieeecomputersociety.org/10.1109/IAS.2007.70}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Assurance and Security, International Symposium on TI - Modelling Quality of Protection in Outsourced Business Processes SN - 0-7695-2876-7 SP247 EP252 A1 - Fabio Massacci, A1 - Artsiom Yautsiukhin, PY - 2007 KW - null VL - 0 JA - Information Assurance and Security, International Symposium on ER -

Fabio Massacci, University of Trento, Italy

Artsiom Yautsiukhin, University of Trento, Italy

There is a large number of research papers and standards dedicated to security for outsourced data. Yet, most papers propose new controls to access and protect the data rather than to assess the level of assurance of the whole process that is currently deployed.

The main contributions of the paper is an approach for aggregating security properties of individual tasks of a complex business process in order to receive the level of assurance provided by the whole process. The approach takes into account the fact that some tasks of a business process may be outsourced and thus account for not very reliable partners. The approach chooses the concrete business process offering the highest assurance among several possible design alternatives by building an optimal hyperpath traversing the business process.

Citation:

Fabio Massacci, Artsiom Yautsiukhin, "Modelling Quality of Protection in Outsourced Business Processes," ias, pp.247-252, 2007 The Third International Symposium on Information Assurance and Security, 2007

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.