Abstract
Business process (BP) can be supported by a large number of resources with evolving contents. In order to receive the support from these resources, the BP must satisfy the authorization policies of these resources. On the other hand, a BP also has its own authorization policies that users must satisfy in order to interact with the BP. Meanwhile, execution policies need to be applied to manage the sequence of tasks invocations in a BP. Therefore, without proper coordination among these policies, BP may not be able to perform correctly, e.g., imperative support from a specific resource could be missing or unauthorized user access can occur. An effective authorization management bringing all types of policies together becomes a must for a BP executing correctly without breaking any authorization and business rules. In this paper, we propose a process model, SOAC-Net that is incorporated with an authorization model, Process-Aware Service-Oriented Authorization Control (PASOAC). PASOAC is an extension of Role Based Access Control (RBAC), which takes both resource and user into account. A set of authorization constraints are designed in PASOAC to coordinate the user access and the resource support in a process environment.
Original language | English |
---|---|
Title of host publication | Proceedings - 2012 IEEE 9th International Conference on Services Computing, SCC 2012 |
Editors | Louise Moser, Manish Parashar, Patrick Hung |
Place of Publication | Piscataway, NJ |
Publisher | Institute of Electrical and Electronics Engineers (IEEE) |
Pages | 376-383 |
Number of pages | 8 |
ISBN (Print) | 9780769547534 |
DOIs | |
Publication status | Published - 2012 |
Event | 2012 IEEE 9th International Conference on Services Computing, SCC 2012 - Honolulu, HI, United States Duration: 24 Jun 2012 → 29 Jun 2012 |
Other
Other | 2012 IEEE 9th International Conference on Services Computing, SCC 2012 |
---|---|
Country/Territory | United States |
City | Honolulu, HI |
Period | 24/06/12 → 29/06/12 |