A flexible policy-based access control model for Workflow Management Systems

Author

Ma, Gang ; Wu, Kehe ; Zhang, Tong ; Li, Wei

Author_Institution

Sch. of Electr. & Electron. Eng., North China Electr. Power Univ., Beijing, China

Volume

2

fYear

2011

fDate

10-12 June 2011

Firstpage

533

Lastpage

537

Abstract

In recent years, Workflow Management Systems (WFMSs) have gained ground both in research and commercial realms. More and more attentions have been paid on the security of WFMSs. Access control is crucial to security management in WFMSs. Firstly, this paper analyses the dynamic and flexible requirements of access control in the enterprise WFMSs. Then, proposing a novel dynamic access control model which incorporates authorization policies to meet the particular requirement of WFMSs, named PBFW. Different from existing works, the proposed access control model support to grant or revoke permissions to/from roles/users according to the context of WFMSs. Besides, the model enforces separation of duty (SoD) policies during runtime and supplies access control of appropriate granularity for WFMSs. A prototype system is developed to realize the effectiveness of the proposed access control model.

Keywords

authorisation; workflow management software; PBFW; WFMS; authorization policy; duty policy separation; dynamic access control model; flexible policy-based access control model; prototype system; security management; workflow management system; Authorization; Computational modeling; Materials; Procurement; Prototypes; Authorization management; Policy-based access control; Security constrains; Separation of duty; Workflow management system;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Science and Automation Engineering (CSAE), 2011 IEEE International Conference on

Conference_Location

Shanghai

Print_ISBN

978-1-4244-8727-1

Type

conf

DOI

10.1109/CSAE.2011.5952526

Filename

5952526