Access control for workflow environment: the RTFW model

Authors:
Hao Jiang;Shengye Lu
Affiliations:
School of Computer Science and Engineering, Southeast University, Nanjing, P.R. China;School of Computer Science and Engineering, Southeast University, Nanjing, P.R. China
Venue:
CSCWD'06 Proceedings of the 10th international conference on Computer supported cooperative work in design III
Year:
2006

Citing 4
Cited 1

Role-Based Access Control Models

Computer
The role graph model and conflict of interest

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
The RSL99 language for role-based separation of duty constraints

RBAC '99 Proceedings of the fourth ACM workshop on Role-based access control
Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management

Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI: Status and Prospects

Enforcing access control in workflow systems with a task engineering approach

International Journal of Internet Technology and Secured Transactions

Quantified Score

Hi-index	0.00

Visualization

Abstract

In workflow environments, access control is an important issue of security. Especially, a suitable access control model to meet the special secure requirements is needed. In this paper, we present a formal model, called RTFW, which allows for some ubiquitous problems in workflow environments, such as separation of duty and dynamic authorization, combining the notions of role-- based access control (RBAC) and task-based access control (TBAC) models. Furthermore, we describe how to design and implement its prototype system and discuss some key issues and challenges.