TY - GEN
T1 - A verification mechanism for secured message processing in business collaboration
AU - Sun, Haiyang
AU - Yang, Jian
AU - Wang, Xin
AU - Zhang, Yanchun
PY - 2009
Y1 - 2009
N2 - Message processing can become unsecured resulting in unreliable business collaboration in terms of authorization policy conflicts, for example, when (1) incorrect role assignment or modification occurs in a partner's services or (2) messages transferred from one organization are processed by unqualified roles in other collaborating business participants. Therefore, verification mechanism based on access policies is critical for managing secured message processing in business collaboration. In this paper, we exploit a role authorization model, Role-Net, which is developed based on Hierarchical Colored Petri Nets (HCPNs) to specify and manage role authorization in business collaboration. A property named Role Authorization Based Dead Marking Freeness is defined based on Role-Net to verify business collaboration reliability according to partners' authorization policies. An algebraic verification method for secured message processing is introduced as well.
AB - Message processing can become unsecured resulting in unreliable business collaboration in terms of authorization policy conflicts, for example, when (1) incorrect role assignment or modification occurs in a partner's services or (2) messages transferred from one organization are processed by unqualified roles in other collaborating business participants. Therefore, verification mechanism based on access policies is critical for managing secured message processing in business collaboration. In this paper, we exploit a role authorization model, Role-Net, which is developed based on Hierarchical Colored Petri Nets (HCPNs) to specify and manage role authorization in business collaboration. A property named Role Authorization Based Dead Marking Freeness is defined based on Role-Net to verify business collaboration reliability according to partners' authorization policies. An algebraic verification method for secured message processing is introduced as well.
KW - Hierarchical colored petri net
KW - Reliability verification
KW - Role authorization
KW - Secured message processing
UR - http://www.scopus.com/inward/record.url?scp=67649993231&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-00672-2-42
DO - 10.1007/978-3-642-00672-2-42
M3 - Conference proceeding contribution
AN - SCOPUS:67649993231
SN - 9783642006715
VL - 5446
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 480
EP - 491
BT - Advances in Data and Web Management - Joint International Conferences, APWeb/WAIM 2009, Proceedings
PB - Springer, Springer Nature
CY - Berlin, Germany
T2 - Joint International Conference on Advances in Data and Web Management, APWeb/WAIM 2009
Y2 - 2 April 2009 through 4 April 2009
ER -