A survey of accountability in computer networks and distributed systems

Xiao, Zhifeng; Kathiresshan, Nandhakumar; Xiao, Yang

doi:10.1002/sec.574

Cited by 24 publications

(10 citation statements)

References 62 publications

(201 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To complement these, we formulated traceback properties, stating that users cannot improperly fire the triggers. There is an analogy between traceback and accountability properties [80]: Say a certain situation occurs (e.g., a role acquisition), which could represent an "abuse"; our traceback property identifies the actions that have led to that, which also contain information about the "responsible" parties.…”

Section: Traceback Propertiesmentioning

confidence: 99%

CoCon: A Conference Management System with Formally Verified Document Confidentiality

2020

View full text Add to dashboard Cite

We present a case study in formally verified security for realistic systems: the information flow security verification of the functional kernel of a web application, the CoCon conference management system. We use the Isabelle theorem prover to specify and verify fine-grained confidentiality properties, as well as complementary safety and "traceback" properties. The challenges posed by this development in terms of expressiveness have led to bounded-deducibility security, a novel security model and verification method generally applicable to systems describable as input/output automata.

show abstract

Section: Traceback Propertiesmentioning

confidence: 99%

CoCon: A Conference Management System with Formally Verified Document Confidentiality

2020

View full text Add to dashboard Cite

show abstract

“…Several articles already mention the limits of the pure security approach (for instance [19]) and suggest to rely on the concept of accountability. Thus, there is a recent interest and active researches for accountability which overlap several domains like security [19,20,21], language representation [22,13], auditing systems [8,23], evidence collection [15,14] and so on. However, only few of them consider an interdisciplinary view of accountability taking into account legal and business aspects.…”

Section: Related Workmentioning

confidence: 99%

Accountability for data protection

Sellami

Royer²,

Benghabrit

2014

2014 International Workshop on Computational Intelligence for Multimedia Understanding (IWCIM)

View full text Add to dashboard Cite

Guarantees on the fair-use of provided or collected personal data is central to consumers while using on-line services. Also, service providers have to provide such guarantees to be in-line with current legislation in data protection and to promote their offered services. In this paper, we introduce the concept of accountability as a solution to data protection. We describe preliminary work around an accountability framework, in which we consider the accountability from the design time by providing design principles for accountable services, and an abstract language to describe accountability policies.

show abstract

“…Suggesting accountability as a mechanism to ensure privacy was also the result of the PATS EU project and is detailed in a book edited by Guagnin et al [6]. Xiao et al [17] provide a survey of accountability in computer networks and distributed systems. Finally, Papanikolaou and Pearson [12] summarize the understanding of the term accountability in different fields and contexts.…”

Section: Related Workmentioning

confidence: 99%

Towards a Unified Model of Accountability Infrastructures

Kacianka

Kelbert

Pretschner

2016

Electron. Proc. Theor. Comput. Sci.

View full text Add to dashboard Cite

Accountability aims to provide explanations for why unwanted situations occurred, thus providing means to assign responsibility and liability. As such, accountability has slightly different meanings across the sciences. In computer science, our focus is on providing explanations for technical systems, in particular if they interact with their physical environment using sensors and actuators and may do serious harm. Accountability is relevant when considering safety, security and privacy properties and we realize that all these incarnations are facets of the same core idea. Hence, in this paper we motivate and propose a model for accountability infrastructures that is expressive enough to capture all of these domains. At its core, this model leverages formal causality models from the literature in order to provide a solid reasoning framework. We show how this model can be instantiated for several real-world use cases.

show abstract

A survey of accountability in computer networks and distributed systems

Cited by 24 publications

References 62 publications

CoCon: A Conference Management System with Formally Verified Document Confidentiality

CoCon: A Conference Management System with Formally Verified Document Confidentiality

Accountability for data protection

Towards a Unified Model of Accountability Infrastructures

Contact Info

Product

Resources

About