SOAC-Net: A model to manage service-based business process authorization

Haiyang Sun*, Jian Yang, Weiliang Zhao, Surya Nepal

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contributionpeer-review

2 Citations (Scopus)

Abstract

Business process (BP) can be supported by a large number of resources with evolving contents. In order to receive the support from these resources, the BP must satisfy the authorization policies of these resources. On the other hand, a BP also has its own authorization policies that users must satisfy in order to interact with the BP. Meanwhile, execution policies need to be applied to manage the sequence of tasks invocations in a BP. Therefore, without proper coordination among these policies, BP may not be able to perform correctly, e.g., imperative support from a specific resource could be missing or unauthorized user access can occur. An effective authorization management bringing all types of policies together becomes a must for a BP executing correctly without breaking any authorization and business rules. In this paper, we propose a process model, SOAC-Net that is incorporated with an authorization model, Process-Aware Service-Oriented Authorization Control (PASOAC). PASOAC is an extension of Role Based Access Control (RBAC), which takes both resource and user into account. A set of authorization constraints are designed in PASOAC to coordinate the user access and the resource support in a process environment.

Original languageEnglish
Title of host publicationProceedings - 2012 IEEE 9th International Conference on Services Computing, SCC 2012
EditorsLouise Moser, Manish Parashar, Patrick Hung
Place of PublicationPiscataway, NJ
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages376-383
Number of pages8
ISBN (Print)9780769547534
DOIs
Publication statusPublished - 2012
Event2012 IEEE 9th International Conference on Services Computing, SCC 2012 - Honolulu, HI, United States
Duration: 24 Jun 201229 Jun 2012

Other

Other2012 IEEE 9th International Conference on Services Computing, SCC 2012
Country/TerritoryUnited States
CityHonolulu, HI
Period24/06/1229/06/12

Fingerprint

Dive into the research topics of 'SOAC-Net: A model to manage service-based business process authorization'. Together they form a unique fingerprint.

Cite this