A Framework for ProActive Caching in Business Process-driven Environments.
Technische Universität Darmstadt
Ph.D. Thesis, Primary publication
|
PhD Thesis - ProActive Caching -
PDF
phd_thesis_mathias_kohler.pdf Copyright Information: In Copyright. Download (2MB) | Preview |
Item Type: | Ph.D. Thesis | ||||
---|---|---|---|---|---|
Type of entry: | Primary publication | ||||
Title: | A Framework for ProActive Caching in Business Process-driven Environments | ||||
Language: | English | ||||
Referees: | Eckert, Prof. Dr. Claudia ; Mühlhäuser, Prof. Dr. Max | ||||
Date: | 10 November 2011 | ||||
Place of Publication: | Darmstadt | ||||
Date of oral examination: | 5 July 2011 | ||||
Abstract: | System response times influence the satisfaction of users interacting with a system. Research shows that increasing response times lead to increasing dissatisfaction or complete refusal of using the system. System analyses show that enforcing access control requirements significantly influence the system's performance experienced by end users. With increasing regulatory demands such as Basel II, Sarbanes Oxley, or data protection laws, modern complex and multi-layered enterprise systems require fine-grained and context sensitive enforcement of access control policies. Consequently, an efficient policy evaluation is getting more and more important to ensure a satisfactory system performance for interactive tasks. Research in the area of performance optimizations of access control evaluations is well known, comprising replication of respective system components, structural optimizations of the security policy, as well as different caching strategies. All these approaches have in common that the presented optimization techniques try to optimize access control evaluations independently from the system context. Modern enterprise systems are inherently based on models for process execution. These models provide a detailed view on the system context and, thus, enable new caching approaches. The dynamic nature of today’s process management systems and increasing demand for context sensitive security enforcement, however, challenge caching access control decisions as changing context strongly impacts on the continuous validity of stored access control decisions. In this thesis, we propose ProActive Caching, a caching strategy specifically tailored to the dynamic properties of business process-driven environments. ProActive Caching aims at providing a significantly low response time for access control decisions, as well as allowing to cache access control decisions which are based on context sensitive security policies. Moreover, we provide an accompanying caching architecture and a detailed performance analysis of different caching strategies for static and dynamic aspects of access control policies, showing that our strategy significantly improves the performance compared to other approaches for caching access control decisions. |
||||
Alternative Abstract: |
|
||||
Alternative keywords: |
|
||||
URN: | urn:nbn:de:tuda-tuprints-27967 | ||||
Classification DDC: | 000 Generalities, computers, information > 004 Computer science | ||||
Divisions: | 20 Department of Computer Science 20 Department of Computer Science > Security Engineering |
||||
Date Deposited: | 23 Nov 2011 07:53 | ||||
Last Modified: | 08 Jul 2020 23:59 | ||||
URI: | https://tuprints.ulb.tu-darmstadt.de/id/eprint/2796 | ||||
PPN: | 281763151 | ||||
Export: |
View Item |