DPE/PAC: decentralized process engine with product access control

Authors:
Shih-Chien Chou;Wei-Chuan Hsu;Wei-Kuang Lo
Affiliations:
Department of Computer Science and Information Engineering, National Dong Hwa University, 1, Section 2, Da Hsueh Road, Shoufeng, Hualien 974, Taiwan;Department of Computer Science and Information Engineering, National Dong Hwa University, 1, Section 2, Da Hsueh Road, Shoufeng, Hualien 974, Taiwan;Department of Computer Science and Information Engineering, National Dong Hwa University, 1, Section 2, Da Hsueh Road, Shoufeng, Hualien 974, Taiwan
Venue:
Journal of Systems and Software
Year:
2005

Citing 29
Cited 1

Generative communication in Linda

ACM Transactions on Programming Languages and Systems (TOPLAS)
OPSIS: a view mechanism for software processes which supports their evolution and reuse

Proceedings of the 18th international conference on Software engineering
CSPL: An Ada95-Like, Unix-Based Process Environment

IEEE Transactions on Software Engineering
WorkWeb system—multi-workflow management with a multi-agent system

GROUP '97 Proceedings of the international ACM SIGGROUP conference on Supporting group work: the integration challenge
The design of a next-generation process language

ESEC '97/FSE-5 Proceedings of the 6th European SOFTWARE ENGINEERING conference held jointly with the 5th ACM SIGSOFT international symposium on Foundations of software engineering
Eliciting software process models with the E3 language

ACM Transactions on Software Engineering and Methodology (TOSEM)
The ARBAC97 model for role-based administration of roles

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
The unified software development process

The unified software development process
Consistency management in a process environment

Journal of Systems and Software - Special issue on invited articles on top systems and software engineering scholars
Process program change control in a process environment

Software—Practice & Experience
Injecting RBAC to secure a Web-based workflow system

RBAC '00 Proceedings of the fifth ACM workshop on Role-based access control
Protecting privacy using the decentralized label model

ACM Transactions on Software Engineering and Methodology (TOSEM)
Access control mechanisms for inter-organizational workflow

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
Role-based authorization constraints specification

ACM Transactions on Information and System Security (TISSEC)
A Decentralized Architecture for Software Process Modeling and Enactment

IEEE Internet Computing
Workspaces: A Web-Based Workflow Management System

IEEE Internet Computing
A Multilevel Secure Workflow Management System

CAiSE '99 Proceedings of the 11th International Conference on Advanced Information Systems Engineering
Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management

Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI: Status and Prospects
Coordinating Interorganizational Workflows Based on Process-Views

DEXA '01 Proceedings of the 12th International Conference on Database and Expert Systems Applications
Role-based access control for collaborative enterprise in peer-to-peer computing environments

Proceedings of the eighth ACM symposium on Access control models and technologies
Model driven security for process-oriented systems

Proceedings of the eighth ACM symposium on Access control models and technologies
Napoleon: A Recipe for Workflow

ACSAC '99 Proceedings of the 15th Annual Computer Security Applications Conference
Dynamic access control through Petri net workflows

ACSAC '00 Proceedings of the 16th Annual Computer Security Applications Conference
Towards a highly scalable architecture for workflow management systems

DEXA '96 Proceedings of the 7th International Workshop on Database and Expert Systems Applications
Specifying Application-level Security in Workflow Systems

DEXA '98 Proceedings of the 9th International Workshop on Database and Expert Systems Applications
A Secure Transaction Environment for Workflows in Distributed Systems

ICPADS '01 Proceedings of the Eighth International Conference on Parallel and Distributed Systems
Information Flow Control in Role-Based Model for Distributed Objects

ICPADS '01 Proceedings of the Eighth International Conference on Parallel and Distributed Systems
Little-JIL 1.0 Language Report TITLE2:

Little-JIL 1.0 Language Report TITLE2:
Embedding role-based access control model in object-oriented systems to protect privacy

Journal of Systems and Software

Controversy Corner: A new research agenda for tool integration

Journal of Systems and Software

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper proposes a process engine called DPE/PAC (decentralized process engine with product access control). It can be embedded in a PSEE (process-centered software engineering environment) to decentralize the PSEE. In a decentralized PSEE, every site can enact process programs and therefore the workload of the PSEE's sites is balanced (i.e., no site will become a bottleneck). Moreover, when a site is down, other sites can enact process programs. Therefore, a decentralized PSEE overcomes the following drawbacks of a traditional client/server PSEEs: (a) the server may become a bottleneck and (b) when the server is down, the entire process should be suspended. In addition to decentralizing PSEEs, DPE/PAC offers an additional function, which is ensuring secure product access (including the enforcement of separation-of-duty constraints). The function is essential for a software process that develops sensitive software systems.