This paper provides an agent-based analytical framework for analyzing knowledge management policies in service-oriented organizations. The knowledge of workers dynamically changes as various services are created through the service interactions between workers and customers. Our previous study focused on the knowledge dynamics and proposed an agent-based model to discuss effective management po...

This paper shows how Policy-Driven Role-Based Access Control (PDRBAC) techniques can be used to extend the Common Data Security Architecture (CDSA). The extensions provide constraint-based access control and are implemented using a flexible policy description language and a new trust policy enforcement mechanism. The expressiveness of the policy description language is demonstrated by examples ...

In this paper we show how access control policies can be specified using term rewriting systems and present the corresponding implementation realized using the Tom framework. We focus on two well known models (BellLapadula and McLean) and propose an algorithm that detects potential information leakages, i.e. checks that information can be accessed only by authorized users independently of the a...

We present a RBAC policy engineering approach that supports administrators to specify RBAC policies with the help of experts’ knowledge, which is documented using the pattern paradigm. These patterns are formalised in Web Ontology Language (OWL) that enables machine interpretation of experts’ knowledge and reasoning about the RBAC policy. Thus, administrators could specify RBAC policies by choo...

One rôle of labour economics is to evaluate the impact of government initiatives, such as employment and education schemes, on economic indicators such as income, the purpose being to inform the introduction of future schemes and policy changes: Should more adult training programmes be funded? Should education be made compulsory until the age of 18? Evaluating the effect of such policies is far...

This article examines the implicit promises of fairness in evidence based medicine (EBM), namely to avoid discrimination through objective processes, and to distribute effective treatments fairly. The relationship between EBM and vulnerable groups (such as those disadvantaged by virtue of poverty, ethnicity, age, gender, mental health problems or similar) is examined. Several aspects of EBM are...

We investigate the problem of WS-BPEL processes resiliency in RBAC-WS-BPEL, an authorization model for WS-BPEL that supports the specification of authorizations for the execution of WS-BPEL process activities by roles and users and authorization constraints, such as separation and binding of duty. The goal of resiliency is to guarantee that even if some users becomes unavailable during the exec...

The widespread commercial availability of plug-in Electric Vehicles (EVs) in recent years motivates policies to encourage EV adoption and infrastructure to cope with the increasing number of EVs. We present an agent-based EV ecosystem model that incorporates EV adoption and usage with spatial and temporal considerations and that can aid different EV industry stakeholders such as policymakers, u...

Epistemic planning can be used for decision making in multiagent situations with distributed knowledge and capabilities. In recent work, we proposed a new notion of strong policies with implicit coordination. With this it is possible to solve planning tasks with joint goals from a single-agent perspective without the agents having to negotiate about and commit to a joint policy at plan time. We...

We present a novel static approach to Role-Based Access Control policy enforcement. The static approach we advocate includes a novel design methodology, for applications involving RBAC, which integrates the security requirements into the system’s architecture. We apply this novel methodology to policies restricting calls to methods in Java applications. We present a language to express RBAC pol...