Detecting and resolving conflicts of mutual-exclusion and binding constraints in a business process context

Authors:
Sigrid Schefer;Mark Strembeck;Jan Mendling;Anne Baumgrass
Affiliations:
Institute for Information Systems, New Media Lab, Vienna University of Economics and Business, Austria;Institute for Information Systems, New Media Lab, Vienna University of Economics and Business, Austria;Institute for Information Business, Vienna University of Economics and Business, Austria;Institute for Information Systems, New Media Lab, Vienna University of Economics and Business, Austria
Venue:
OTM'11 Proceedings of the 2011th Confederated international conference on On the move to meaningful internet systems - Volume Part I
Year:
2011

Citing 14
Cited 3

Role-Based Access Control Models

Computer
A role-based access control model and reference implementation within a corporate intranet

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
The specification and enforcement of authorization constraints in workflow management systems

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Role-based authorization constraints specification

ACM Transactions on Information and System Security (TISSEC)
Managing Workflow Authorization Constraints through Active Database Technology

Information Systems Frontiers
Detecting Conflicts in a Role-Based Delegation Model

ACSAC '01 Proceedings of the 17th Annual Computer Security Applications Conference
Resolving constraint conflicts

Proceedings of the ninth ACM symposium on Access control models and technologies
Finite State Transducers for Policy Evaluation and Conflict Resolution

POLICY '04 Proceedings of the Fifth IEEE International Workshop on Policies for Distributed Systems and Networks
The Consistency of Task-Based Authorization Constraints in Workflow Systems

CSFW '04 Proceedings of the 17th IEEE workshop on Computer Security Foundations
Separation of duties for access control enforcement in workflow environments

IBM Systems Journal - End-to-end security
Inter-instance authorization constraints for secure workflow management

Proceedings of the eleventh ACM symposium on Access control models and technologies
Role-Based Access Control, Second Edition

Role-Based Access Control, Second Edition
Generic algorithms for consistency checking of mutual-exclusion and binding constraints in a business process context

OTM'10 Proceedings of the 2010 international conference on On the move to meaningful internet systems - Volume Part I
Modeling process-related RBAC models with extended UML activity models

Information and Software Technology

Generic support for RBAC break-glass policies in process-aware information systems

Proceedings of the 28th Annual ACM Symposium on Applied Computing
Enforcement of entailment constraints in distributed service-based business processes

Information and Software Technology
A systematic review on security in Process-Aware Information Systems - Constitution, challenges, and future directions

Information and Software Technology

Quantified Score

Hi-index	0.01

Visualization

Abstract

Mutual exclusion and binding constraints are important means to define which combinations of subjects and roles can be assigned to the tasks that are included in a business process. Due to the combinatorial complexity of potential role-to-subject and task-to-role assignments, there is a strong need to systematically check the consistency of a given set of constraints. In this paper, we discuss the detection of consistency conflicts and provide resolution strategies for the corresponding conflicts.