A Framework for ProActive Caching in Business Process-driven Environments.
Technische Universität, Darmstadt
[Ph.D. Thesis], (2011)
PhD Thesis - ProActive Caching -
Available under Only rights of use according to UrhG.
Download (2MB) | Preview
|Item Type:||Ph.D. Thesis|
|Title:||A Framework for ProActive Caching in Business Process-driven Environments|
System response times influence the satisfaction of users interacting with a system. Research shows that increasing response times lead to increasing dissatisfaction or complete refusal of using the system.
System analyses show that enforcing access control requirements significantly influence the system's performance experienced by end users. With increasing regulatory demands such as Basel II, Sarbanes Oxley, or data protection laws, modern complex and multi-layered enterprise systems require fine-grained and context sensitive enforcement of access control policies. Consequently, an efficient policy evaluation is getting more and more important to ensure a satisfactory system performance for interactive tasks.
Research in the area of performance optimizations of access control evaluations is well known, comprising replication of respective system components, structural optimizations of the security policy, as well as different caching strategies. All these approaches have in common that the presented optimization techniques try to optimize access control evaluations independently from the system context.
Modern enterprise systems are inherently based on models for process execution. These models provide a detailed view on the system context and, thus, enable new caching approaches. The dynamic nature of today’s process management systems and increasing demand for context sensitive security enforcement, however, challenge caching access control decisions as changing context strongly impacts on the continuous validity of stored access control decisions.
In this thesis, we propose ProActive Caching, a caching strategy specifically tailored to the dynamic properties of business process-driven environments. ProActive Caching aims at providing a significantly low response time for access control decisions, as well as allowing to cache access control decisions which are based on context sensitive security policies.
Moreover, we provide an accompanying caching architecture and a detailed performance analysis of different caching strategies for static and dynamic aspects of access control policies, showing that our strategy significantly improves the performance compared to other approaches for caching access control decisions.
|Place of Publication:||Darmstadt|
|Classification DDC:||000 Allgemeines, Informatik, Informationswissenschaft > 004 Informatik|
|Divisions:||20 Fachbereich Informatik
20 Fachbereich Informatik > Security Engineering
|Date Deposited:||23 Nov 2011 07:53|
|Last Modified:||07 Dec 2012 12:01|
|Referees:||Eckert, Prof. Dr. Claudia and Mühlhäuser, Prof. Dr. Max|
|Refereed:||5 July 2011|