Conformance Checking of RBAC Policies in Process-Aware Information Systems

被引：0

作者：

Baumgrass, Anne ^{[1
]}

Baier, Thomas ^{[2
]}

Mendling, Jan ^{[2
]}

Strembeck, Mark ^{[1
]}

机构：

[1] Vienna Univ Econ & Business WU Vienna, Inst Informat Syst & New Media, Vienna, Austria

[2] Humboldt Univ, Inst Informat Syst, Berlin, Germany

来源：

BUSINESS PROCESS MANAGEMENT WORKSHOPS, PT II | 2012年 / 100卷

关键词：

Process-Aware Information Systems; Conformance Checking; LTL; Security; Role-Based Access Control;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

A process-aware information system (PAIS) is a software system that supports the definition, execution, and analysis of business processes. The execution of process instances is typically recorded in so called event logs. In this paper, we present an approach to automatically generate LTL (Linear Temporal Logic) statements from process-related RBAC (Role-based Access Control) models. These LTL statements are used to check if process executions that are recorded via event logs conform to the access control policies defined via a corresponding RBAC model. To demonstrate our approach, we implemented a RBAC-to-LTL component, and used the ProM tool to test the resulting LTL statements with event logs created from process simulations in CPN tools.

引用

页码：435 / +

页数：3

共 50 条

[21] Process-aware information systems: Bridging people and software through process technology
Dustdar, Schahram
[J]. INFORMATION PROCESSING & MANAGEMENT, 2006, 42 (05) : 1396 - 1397
[22] Conformance checking of RBAC policy and its implementation
Hansen, F
Oleshchuk, V
[J]. INFORMATION SECURITY PRACTICE AND EXPERIENCE, 2005, 3439 : 144 - 155
[23] A Requirements Engineering Approach for Data Modelling of Process-Aware Information Systems
Luis de la Vara, Jose
Fortuna, Michel H.
Sanchez, Juan
Werner, Claudia M. L.
Borges, Marcos R. S.
[J]. BUSINESS INFORMATION SYSTEMS, 2009, 21 : 133 - +
[24] Management and engineering of process-aware information systems: Introduction to the special issue
Dumas, Marlon
Recker, Jan
Weske, Mathias
[J]. INFORMATION SYSTEMS, 2012, 37 (02) : 77 - 79
[25] Model-based Development and Testing of Process-Aware Information Systems
Mans, R. S.
van der Aalst, W. M. P.
Russell, N. C.
Bakker, P. J. M.
Moleman, A. J.
[J]. 2009 FIRST INTERNATIONAL CONFERENCE ON ADVANCES IN SYSTEM TESTING AND VALIDATION LIFECYCLE, 2009, : 129 - +
[26] Schema Evolution in Object and Process-Aware Information Systems: Issues and Challenges
Chiao, Carolina Ming
Kuenzle, Vera
Reichert, Manfred
[J]. BUSINESS PROCESS MANAGEMENT WORKSHOPS (BPM), 2013, 132 : 328 - 339
[27] PROVIDING INTEGRATED LIFE CYCLE SUPPORT IN PROCESS-AWARE INFORMATION SYSTEMS
Weber, Barbara
Reichert, Manfred
Rinderle-Ma, Stefanie
Wild, Werner
[J]. INTERNATIONAL JOURNAL OF COOPERATIVE INFORMATION SYSTEMS, 2009, 18 (01) : 115 - 165
[28] Modeling Business Rules for Supervisory Control of Process-Aware Information Systems
Santos, Eduardo A. P.
Francisco, Rosemary
Vieira, Agnelo D.
Loures, Eduardo de F. R.
Busetti, Marco A.
[J]. BUSINESS PROCESS MANAGEMENT WORKSHOPS, PT II, 2012, 100 : 447 - 458
[29] Change patterns and change support features in process-aware information systems
Weber, Barbara
Rinderle, Stefanie
Reichert, Manfred
[J]. ADVANCED INFORMATION SYSTEMS ENGINEERING, PROCEEDINGS, 2007, 4495 : 574 - +
[30] Process-Aware Information Systems: Bridging people and software through process technology.
Ma, Hongyan
[J]. JOURNAL OF THE AMERICAN SOCIETY FOR INFORMATION SCIENCE AND TECHNOLOGY, 2007, 58 (03): : 455 - 456

← 1 2 3 4 5 →