A role-based secure workflow model

被引：2

作者：

Song, Chunyan ^{[1
]}

Xu, Jianliang ^{[1
]}

Li, Shenhua ^{[2
]}

Wang, Mingqiang ^{[2
]}

机构：

[1] Ocean Univ China, Dept Comp Sci & Technol, Qingdao 266100, Peoples R China

[2] Shandong Univ, Lab Cryptog Technol & Informat Secur, Jinan 250100, Peoples R China

来源：

SIXTH INTERNATIONAL CONFERENCE ON GRID AND COOPERATIVE COMPUTING, PROCEEDINGS | 2007年

基金：

中国国家自然科学基金;

关键词：

D O I：

10.1109/GCC.2007.24

中图分类号：

TP3 [计算技术、计算机技术];

学科分类号：

0812 ;

摘要：

Workflow Management System is used for supporting many day-to-day workflows in large organizations. But heterogeneous and distributed computing systems make security management of WFMS decentralized, thus its security must be noticed. In this paper we propose a role-based secure workflow model which realizes the principle of separation of duties (SoD), the principle of least privilege, integrity, authorization and availability. We also portray the whole model as a multi-layered architecture with a multilayered state graph for expressing and analyzing the flow of authorization. The layers are, respectively, role layer task layer control layer and data layer.

引用

页码：764 / +

页数：2

共 50 条

[21] The application of role-based access control in workflow management systems
Liu, JX
Sun, LX
[J]. 2004 IEEE INTERNATIONAL CONFERENCE ON SYSTEMS, MAN & CYBERNETICS, VOLS 1-7, 2004, : 5492 - 5496
[22] Role-based Multi-purpose Workflow Engine Architecture
Richly, Sebastian
Goetz, Sebastian
Assmann, Uwe
Schmidt, Sandro
[J]. TECHNOLOGIES FOR CONTEXT-AWARE BUSINESS PROCESS MANAGEMENT, ADVANCED ENTERPRISE ARCHITECTURE AND REPOSITORIES AND RECENT TRENDS IN SOA BASED INFORMATION SYSTEMS, 2010, : 45 - 54
[23] A role-based semantic authorization framework for workflow management systems
Liu, JX
Chen, HY
Tang, MD
[J]. CHINESE JOURNAL OF ELECTRONICS, 2006, 15 (01) : 55 - 59
[24] FORBAC: A flexible organisation and role-based access control model for secure information systems
Saidani, Oumaima
Nurcan, Selmin
[J]. ADVANCES IN INFORMATION SYSTEMS, PROCEEDINGS, 2006, 4243 : 364 - 376
[25] A secure workflow model based on distributed constrained role and task assignment for the Internet
Moodahi, I
Gudes, E
Lavee, O
Meisels, A
[J]. INFORMATION AND COMMUNICATIONS SECURITY, PROCEEDINGS, 2004, 3269 : 171 - 186
[26] Role-based Runtime Model Synchronization
Werner, Christopher
Schoen, Hendrik
Kuehn, Thomas
Goetz, Sebastian
Assmann, Uwe
[J]. 44TH EUROMICRO CONFERENCE ON SOFTWARE ENGINEERING AND ADVANCED APPLICATIONS (SEAA 2018), 2018, : 306 - 313
[27] Role-Based Generic Model Refactoring
Heimann, Jan
Seifert, Mirko
Assmann, Uwe
[J]. MODEL DRIVEN ENGINEERING LANGUAGES AND SYSTEMS, PT II, 2010, 6395 : 78 - 92
[28] Towards secure information sharing using role-based delegation
Ahn, Gall-Joon
Mohan, Badrinath
Hong, Seng-Phil
[J]. JOURNAL OF NETWORK AND COMPUTER APPLICATIONS, 2007, 30 (01) : 42 - 59
[29] The research on role-based access control mechanism for workflow management system
Wang, BY
Zhang, SM
[J]. GRID AND COOPERATIVE COMPUTING GCC 2004, PROCEEDINGS, 2004, 3251 : 729 - 736
[30] A Role-Based Fuzzy Assignment Model
ZUO Bao-he
[J]. Journal of Systems Science and Systems Engineering, 2002, (02) : 190 - 196

← 1 2 3 4 5 →