Title :
A flexible policy-based access control model for Workflow Management Systems
Author :
Ma, Gang ; Wu, Kehe ; Zhang, Tong ; Li, Wei
Author_Institution :
Sch. of Electr. & Electron. Eng., North China Electr. Power Univ., Beijing, China
Abstract :
In recent years, Workflow Management Systems (WFMSs) have gained ground both in research and commercial realms. More and more attentions have been paid on the security of WFMSs. Access control is crucial to security management in WFMSs. Firstly, this paper analyses the dynamic and flexible requirements of access control in the enterprise WFMSs. Then, proposing a novel dynamic access control model which incorporates authorization policies to meet the particular requirement of WFMSs, named PBFW. Different from existing works, the proposed access control model support to grant or revoke permissions to/from roles/users according to the context of WFMSs. Besides, the model enforces separation of duty (SoD) policies during runtime and supplies access control of appropriate granularity for WFMSs. A prototype system is developed to realize the effectiveness of the proposed access control model.
Keywords :
authorisation; workflow management software; PBFW; WFMS; authorization policy; duty policy separation; dynamic access control model; flexible policy-based access control model; prototype system; security management; workflow management system; Authorization; Computational modeling; Materials; Procurement; Prototypes; Authorization management; Policy-based access control; Security constrains; Separation of duty; Workflow management system;
Conference_Titel :
Computer Science and Automation Engineering (CSAE), 2011 IEEE International Conference on
Conference_Location :
Shanghai
Print_ISBN :
978-1-4244-8727-1
DOI :
10.1109/CSAE.2011.5952526
