A Verification Mechanism for Secured Message Processing in Business Collaboration

Authors:
Haiyang Sun;Jian Yang;Xin Wang;Yanchun Zhang
Affiliations:
Department of Computing, Macquarie University, Sydney, Australia NSW2109;Department of Computing, Macquarie University, Sydney, Australia NSW2109;School of Computer Science and Mathematics, Victoria University, Melbourne, Victoria, Australia;School of Computer Science and Mathematics, Victoria University, Melbourne, Victoria, Australia
Venue:
APWeb/WAIM '09 Proceedings of the Joint International Conferences on Advances in Data and Web Management
Year:
2009

Citing 8
Cited 0

Role-Based Access Control Models

Computer
Petri Nets for System Engineering: A Guide to Modeling, Verification, and Applications

Petri Nets for System Engineering: A Guide to Modeling, Verification, and Applications
Introduction: Service-oriented computing

Communications of the ACM - Service-oriented computing
An Access Control Model for Web Services in Business Process

WI '04 Proceedings of the 2004 IEEE/WIC/ACM International Conference on Web Intelligence
Access Control and Authorization Constraints for WS-BPEL

ICWS '06 Proceedings of the IEEE International Conference on Web Services
BPEL4RBAC: An Authorisation Specification for WS-BPEL

WISE '08 Proceedings of the 9th international conference on Web Information Systems Engineering
Verification of Access Control Requirements in Web Services Choreography

SCC '08 Proceedings of the 2008 IEEE International Conference on Services Computing - Volume 1
Authorization Policy Based Business Collaboration Reliability Verification

ICSOC '08 Proceedings of the 6th International Conference on Service-Oriented Computing

Quantified Score

Hi-index	0.00

Visualization

Abstract

Message processing can become unsecured resulting in unreliable business collaboration in terms of authorization policy conflicts, for example, when (1) incorrect role assignment or modification occurs in a partner's services or (2) messages transferred from one organization are processed by unqualified roles in other collaborating business participants. Therefore, verification mechanism based on access policies is critical for managing secured message processing in business collaboration. In this paper, we exploit a role authorization model, Role-Net, which is developed based on Hierarchical Colored Petri Nets (HCPNs) to specify and manage role authorization in business collaboration. A property named Role Authorization Based Dead Marking Freeness is defined based on Role-Net to verify business collaboration reliability according to partners' authorization policies. An algebraic verification method for secured message processing is introduced as well.