Architecture of context-aware workflow authorization management systems for workflow-based systems

Authors:
Seon-Ho Park;Young-Ju Han;Jung-Ho Eom;Tai-Myoung Chung
Affiliations:
Internet Management Technology Laboratory, School of Information and Communication Engineering, Sungkyunkwan University, Suwon-si, Gyeonggi-do, Republic of Korea;Internet Management Technology Laboratory, School of Information and Communication Engineering, Sungkyunkwan University, Suwon-si, Gyeonggi-do, Republic of Korea;Internet Management Technology Laboratory, School of Information and Communication Engineering, Sungkyunkwan University, Suwon-si, Gyeonggi-do, Republic of Korea;Internet Management Technology Laboratory, School of Information and Communication Engineering, Sungkyunkwan University, Suwon-si, Gyeonggi-do, Republic of Korea
Venue:
APNOMS'09 Proceedings of the 12th Asia-Pacific network operations and management conference on Management enabling the future internet for changing business and new computing services
Year:
2009

Citing 11
Cited 0

TRBAC: A temporal role-based access control model

ACM Transactions on Information and System Security (TISSEC)
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
Authorization and Access Control of Application Data in Workflow Systems

Journal of Intelligent Information Systems - Special issue: A survey of research questions for intelligent information systems in education
Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management

Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI: Status and Prospects
An Authorization Model for Workflows

ESORICS '96 Proceedings of the 4th European Symposium on Research in Computer Security: Computer Security
A Context-Aware Security Architecture for Emerging Applications

ACSAC '02 Proceedings of the 18th Annual Computer Security Applications Conference
GEO-RBAC: a spatially aware RBAC

Proceedings of the tenth ACM symposium on Access control models and technologies
On spatio-temporal constraints and inheritance in role-based access control

Proceedings of the 2008 ACM symposium on Information, computer and communications security
Context Integration for Smart Workflows

PERCOM '08 Proceedings of the 2008 Sixth Annual IEEE International Conference on Pervasive Computing and Communications
A spatio-temporal role-based access control model

Proceedings of the 21st annual IFIP WG 11.3 working conference on Data and applications security
Context-Role based access control for context-aware application

HPCC'06 Proceedings of the Second international conference on High Performance Computing and Communications

Quantified Score

Hi-index	0.00

Visualization

Abstract

Workflow technology is gaining major influence in many application domains. Especially, with the progress of the ubiquitous computing technology, a context-aware workflow has received considerable attention as a new workflow approach for a ubiquitous computing environment. This paper discusses security considerations for context-aware workflow systems and presents an architecture of a context-aware workflow authorization management (CAWAM) system. The CAWAM system offers management and enforcement of an authorization policy for context-aware workflow systems, and provides security-related context management functions. The CAWAM system utilizes the GCRBAC model for an access control service. In addition, the system supports a web-based policy management user interface.