Task-activity based access control for process collaboration environments

Authors:
Yahui Lu;Li Zhang;Jiaguang Sun
Affiliations:
College of Software, Shenzhen University, Shenzhen 518060, PR China;Key Laboratory for Information System Security of Ministry of Education China, School of Software, Tsinghua University, Beijing 100084, PR China;Key Laboratory for Information System Security of Ministry of Education China, School of Software, Tsinghua University, Beijing 100084, PR China
Venue:
Computers in Industry
Year:
2009

Citing 23
Cited 6

Access control for collaborative environments

CSCW '92 Proceedings of the 1992 ACM conference on Computer-supported cooperative work
Role-Based Access Control Models

Computer
Role and task-based access control in the PerDiS groupware platform

RBAC '98 Proceedings of the third ACM workshop on Role-based access control
Injecting RBAC to secure a Web-based workflow system

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
Access control mechanisms for inter-organizational workflow

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Authorization and Access Control of Application Data in Workflow Systems

Journal of Intelligent Information Systems - Special issue: A survey of research questions for intelligent information systems in education
Workflow Patterns

Distributed and Parallel Databases
Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management

Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI: Status and Prospects
An Authorization Model for Workflows

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
An Architecture for Cross-Organizational Business Processes

WECWIS '00 Proceedings of the Second International Workshop on Advance Issues of E-Commerce and Web-Based Information Systems (WECWIS 2000)
Task-role-based access control model

Information Systems
CA-PLAN, an Inter-Organizational Workflow Model

FTDCS '04 Proceedings of the 10th IEEE International Workshop on Future Trends of Distributed Computing Systems
Workflow View Driven Cross-Organizational Interoperability in a Web Service Environment

Information Technology and Management
Access control in collaborative systems

ACM Computing Surveys (CSUR)
Development of an access control model, system architecture and approaches for resource sharing in virtual enterprise

Computers in Industry
DW-RBAC: A formal security model of delegation and revocation in workflow systems

Information Systems
Empowering collaborative commerce with Web services enabled business process management systems

Decision Support Systems
Access control in collaborative commerce

Decision Support Systems
Process-centric engineering web services in a distributed and collaborative environment

Computers and Industrial Engineering - Special issue: Logistics and supply chain management
An architecture for access control management in collaborative enterprise systems based on organization models

Science of Computer Programming
A Workflow Engine-Driven SOA-Based Cooperative Computing Paradigm in Grid Environments

International Journal of High Performance Computing Applications
CoopFlow: a framework for inter-organizational workflow cooperation

OTM'05 Proceedings of the 2005 Confederated international conference on On the Move to Meaningful Internet Systems - Volume >Part I
Service interaction patterns

BPM'05 Proceedings of the 3rd international conference on Business Process Management

Towards new web services based supervisory systems in complex industrial organizations: Basic principles and case study

Computers in Industry
Activity-oriented access control to ubiquitous hospital information and services

Information Sciences: an International Journal
Buyer/seller collaboration through measurement of beliefs on innovativeness of products

Computers in Industry
A dynamic web service-based trust and reputation scheme for scientific workflows

Proceedings of the 12th International Conference on Information Integration and Web-based Applications & Services
Roles of users in interactive networked collaborative environment

CIT'11 Proceedings of the 5th WSEAS international conference on Communications and information technology
Association-Based Active Access Control models with balanced scalability and flexibility

Computers in Industry

Quantified Score

Hi-index	0.00

Visualization

Abstract

Collaborative systems enable organizations to communicate, interact and cooperate with each other to achieve their business goals. Access control is an important security mechanism for organizations to protect their resources in collaborative environments. Many access control models and mechanisms have been proposed for collaborative systems. However, under the new collaborative paradigm based on Web services and workflow technologies, some specific access control requirements should be addressed to support the various process collaboration patterns. In this paper, we present a task-activity based access control (TABAC) model for process collaboration environments. In TABAC, business process is composed by activities and dynamic permissions are related to tasks. Task permissions can be dynamically assigned to processes during the interaction of activities. A SOAP based interaction protocol is also proposed to transmit task permissions between processes. Finally, we describe the implementation of TABAC model in workflow management system which conforms to the XACML and WS-BPEL specifications.