DocumentCode :
3429765
Title :
Web services and role selection in support of separation of duties and binding of duties for composable process execution
Author :
Hwang, San-Yih ; Chen, Yun-Chih ; Tang, Yun
Author_Institution :
Dept. of Inf. Manage., Nat. Sun Yat-sen Univ., Kaohsiung, Taiwan
fYear :
2009
fDate :
14-15 Jan. 2009
Firstpage :
1
Lastpage :
8
Abstract :
Web services have become the de facto standard as component technologies for quickly composing a business process that satisfies the business goal of an organization. Nowadays, Web services have found its way into describing the functions of automatic tasks as well as human tasks. An important part in the specification of a business process, especially for human tasks, is the access control that constrains who can perform its tasks. This paper considers both types of tasks involved in a Web services-based process and the corresponding access control problem. We focus on two types of access control constraints, namely separation of duties (SoD) and binding of duties (BoD). Both role-level and participant-level of SoDs and BoDs are investigated in this paper. We propose an approach to dynamically choosing the performer for each task so as to satisfy all access control constraints. The proposed performer selection approach is evaluated based on a purchase order scenario and is shown to have the highest chance of satisfying all predefined access control constraints when compared to other methods.
Keywords :
Web services; authorisation; business data processing; Web services-based process; access control constraints; binding of duties; business process composition; composable process execution; performer selection approach; purchase order scenario; separation of duties; Access control; Board of Directors; Filling; Humans; Information management; Performance evaluation; Project management; Specification languages; Standards organizations; Web services; binding of duties; separation of duties; web service selection; web services; workflow access control;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Service-Oriented Computing and Applications (SOCA), 2009 IEEE International Conference on
Conference_Location :
Taipei
Print_ISBN :
978-1-4244-5300-9
Type :
conf
DOI :
10.1109/SOCA.2009.5410469
Filename :
5410469
Link To Document :
بازگشت