Concurrency control in groupware systems
SIGMOD '89 Proceedings of the 1989 ACM SIGMOD international conference on Management of data
Role-Based Access Control Models
Computer
The specification and enforcement of authorization constraints in workflow management systems
ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Security models for web-based applications
Communications of the ACM
Organization based access control
POLICY '03 Proceedings of the 4th IEEE International Workshop on Policies for Distributed Systems and Networks
Role-based control of shared application views
Proceedings of the 18th annual ACM symposium on User interface software and technology
Transparent adaptation of single-user applications for multi-user real-time collaboration
ACM Transactions on Computer-Human Interaction (TOCHI)
A formal approach for testing security rules
Proceedings of the 12th ACM symposium on Access control models and technologies
Scenario-Driven Role Engineering
IEEE Security and Privacy
A web-based collaborative metamodeling environment with secure remote model access
ICWE'10 Proceedings of the 10th international conference on Web engineering
A generic proxy for secure smart card-enabled web applications
ICWE'10 Proceedings of the 10th international conference on Web engineering
OTM'10 Proceedings of the 2010 international conference on On the move to meaningful internet systems - Volume Part I
An integrated approach for identity and access management in a SOA context
Proceedings of the 16th ACM symposium on Access control models and technologies
Towards user-centric cross-site personalisation
ICWE'11 Proceedings of the 11th international conference on Web engineering
Exploiting single-user web applications for shared editing: a generic transformation approach
Proceedings of the 21st international conference on World Wide Web
Role-Based access control for model-driven web applications
ICWE'12 Proceedings of the 12th international conference on Web Engineering
Supporting entailment constraints in the context of collaborative web applications
Proceedings of the 28th Annual ACM Symposium on Applied Computing
Enforcement of entailment constraints in distributed service-based business processes
Information and Software Technology
Hi-index | 0.00 |
Real-time collaborative Web applications allow multiple users to concurrently work on a shared document. In addition to popular use cases, such as collaborative text editing, they can also be used for form-based business applications that often require forms to be filled out by different stakeholders. In this context, different users typically need to fill in different parts of a form. Role-based access control and entailment constraints provide means for defining such restrictions. Major challenges in the context of integrating collaborative Web applications with access control restrictions are how to support changes of the configuration of access constrained UI elements at runtime, realizing acceptable performance and update behaviour, and an easy integration with existing Web applications. In this paper, we address these challenges through a novel approach supporting constrained and customized UI views that support runtime changes and integrate well with existing Web applications. Using a prototypical implementation, we show that the approach provides acceptable update behaviour and requires only a small performance overhead for the access control tasks with linear scalability.