Deploying access control in distributed workflow

Authors:
Samiha Ayed;Nora Cuppens-Boulahia;Frédéric Cuppens
Affiliations:
ENST-Bretagne, Cesson Sevigne, France;ENST-Bretagne, Cesson Sevigne, France;ENST-Bretagne, Cesson Sevigne, France
Venue:
AISC '08 Proceedings of the sixth Australasian conference on Information security - Volume 81
Year:
2008

Citing 10
Cited 2

Role-Based Access Control Models

Computer
Modeling and Analysis of Workflows Using Petri Nets

Journal of Intelligent Information Systems - Special issue on workflow management systems
The specification and enforcement of authorization constraints in workflow management systems

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
SecureFlow: a secure Web-enabled workflow management system

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
An Authorization Model for Workflows

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
Organization based access control

POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
A secure workflow model

ACSW Frontiers '03 Proceedings of the Australasian information security workshop conference on ACSW frontiers 2003 - Volume 21
Modelling Contexts in the Or-BAC Model

ACSAC '03 Proceedings of the 19th Annual Computer Security Applications Conference
The extended access matrix model of computer security

ACM SIGSOFT Software Engineering Notes - Proceedings of VERkshop III -- a formal verification workshop
Nomad: A Security Model with Non Atomic Actions and Deadlines

CSFW '05 Proceedings of the 18th IEEE workshop on Computer Security Foundations

Semantic service composition framework for multidomain ubiquitous computing applications

ICSOC'12 Proceedings of the 10th international conference on Service-Oriented Computing
A systematic review on security in Process-Aware Information Systems - Constitution, challenges, and future directions

Information and Software Technology

Quantified Score

Hi-index	0.00

Visualization

Abstract

Workflows are operational business processes. Workfow Management Systems (WFMS) are concerned with the control and coordination of these workflows. In recent years, there has been a trend to integrate WFMS in distributed inter-organizational systems. In this case malfunctioning of one WFMS can affect more than one organization, making the correct functioning of a WFMS a critical issue. Thus, an important function of WFMS is to enforce the security of these inter-organizational workflows. Several works have been done to integrate the security aspects in the workflow specification. Unfortunately, these research works generally adopt a centralized management approach and are based on static access control models. In this paper, we suggest a decentralized and dynamic approach to handle access control in workflows.