@inbook{1ac1746f6bcc4017b9c33e580a32de62,
title = "BPEL4RBAC: An authorisation specification for WS-BPEL",
abstract = "Business process management is designed to make business activities and trade easier and more cost effective. The increasing business integration and legal requirements raise the need for secure business processes. However, the openness and distribution nature of inter-organisational business processes may result in more security breaches. As a widely accepted standard, WS-BPEL does not support for business process security protection even if the participating organisations already have working security policies. To address this problem, we have developed an authorisation specification BPEL4RBAC for WS-BPEL. Through BPEL4RBAC access control model, with an extension for WS-BPEL, called BPEL4RBAC policy language, the secure WS-BPEL is then achievable. The former introduces the access control capability into business process environment while the latter is used to represent the authorisation information in WS-BPEL.",
author = "Xin Wang and Yanchun Zhang and Hao Shi and Jian Yang",
year = "2008",
doi = "10.1007/978-3-540-85481-4_29",
language = "English",
isbn = "9783540854807",
series = "Lecture Notes in Computer Science",
publisher = "Springer, Springer Nature",
pages = "381--395",
editor = "James Bailey and David Maier and Klaus-Dieter Schewe and Bernhard Thalheim and Wang, {Xiaoyang Sean}",
booktitle = "Web Information Systems Engineering - WISE 2008",
address = "United States",
note = "9th International Conference on Web Information Systems Engineering, WISE 2008 ; Conference date: 01-09-2008 Through 03-09-2008",
}