Collaborative business and data privacy: Toward a cyber-control?

Computers in Industry

Volumn 56, Issue 4, 2005, Pages 361-370

  Biennier, Frédérique ^a   Favrel, Joël ^a,b,c  

^a UNIVERSITÉ DE LYON   (France)

^b IRISA   (France)

^c INSA ^*

Author keywords

Data privacy; Process models; Security; Virtual enterprise

Indexed keywords

BUSINESS PROCESS (BP) ORGANIZATION; PROCESS MODELS; SECURITY; VIRTUAL ENTERPRISES;

INDUSTRIAL MANAGEMENT; INFORMATION TECHNOLOGY; PROCESS ENGINEERING; SECURITY OF DATA; SOCIETIES AND INSTITUTIONS; VIRTUAL REALITY;

DATA PRIVACY;

EID: 33644511399     PISSN: 01663615     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.compind.2005.01.004     Document Type: Article

References (32)

1. V.S. Alagar, K. Periyasamy, Specification and verification of secure business transaction systems, in: Proceedings of the SOFSEM'2002, Lecture Notes in Computer Science 2540 (2002) 240-252.
2. SM Method, 2001, CERT White Paper available at http://www.cert.org/octave/ methodintro.html.
3. C. Alberts, A. Dorofee, Octave threats profile, 2001, CERT White Paper available at http://www.cert.org/archive/pdf/OCTAVEthreatProfiles.pdf.
4. M. Backes, B. Pfitzmann, M. Waidner, Security in business process engineering, in: Proceedings of the BPM'2003, Lecture Notes in Computer Science 2678 (2003) 168-183.
5. F. Biennier, G. Beuchot, and J. Favrel Integration of the information cycle of life in concurrent engineering Proceedings of the CE'96, Technomic 1996 304 311
6. F. Biennier Security integration in inter-enterprise business process engineering H.S. Jagdev J.C. Wortmann H.J. Pels Collaborative Systems for Production Management 2002 Kluwer Academic Publishers 207 218
7. F. Biennier, and J. Favrel Collaborative BP engineering in alliances of SMEs L. Camarinha-Matos H. Afsarmanesh Processes and Foundations for Virtual Organizations 2002 Kluwer Academic Publishers 441 448
8. C. Bussler The application of workflow technology in semantic B2B integration Distributed and Parallel Databases 12 2002 163 191
9. F. Cassati, and A. Discenza Modelling and managing interactions among business processes Journal of Systems Integration 10 2001 145 168
10. CCITT Red Book, vol. VI.10, Language for Description and Functionnal Specification (SDL), Advices Z.100 to Z.104, 1985.
11. Department of Defence (DoD), Trusted Computer Security Evaluation Criteria-Orange Book, DOD 5200.28-STD Report, 1985.
12. EEC, Information Technology Security Evaluation Criteria. 1991, Zip file downlable at http://www.cordis.lu/infosec/src/crit.htm.
13. EEC 95/46, Directive on the protection of individuals with regard to the processing of personal data and on the free movement of such data, Directive 95/46.
14. EEC Article 29 work group, Data protection working party-Opinion 8/2001 on the processing of personal data in the employment context - Ref. 5062/En/Final WP48, 2001.
15. S. Fisher-Hübner, IT-security and privacy, Lecture Notes in Computer Science 1958, 2001, pp. 35-106.
16. R.L. Franck Security issues in the virtual corporation Computers and Security 15 1996 471 476
17. FTC (Federal Trade Commission), Privacy online: a report to Congress, 1998 Report, 1998. Available at http://www.ftc.gov/reports/privacy3/priv-23.htm.
18. A. Grasso, J.L. Meunier, D. Pagani, and R. Paraeschi Distributed coordination and workflow on the world wide web The Journal of Distributed Computing 6 1997 175 200
19. E. Gudes, and A. Tubman AutoWF - a secure web workflow system using autonomous objects Data and Knowledge Engineering 43 2002 1 27
20. ISO, ISO/IEC 17799:2000 Standard-Information Technology. Code of practice for information security management, 2000.
21. J. Jürjens, UMLsec: extending uml for secure systems development, in: Proceedings of the UML'2002, Lecture Notes in Computer Science 2460 (2002) 412-425.
22. G. Kovacich The ISSO must understand the business and management environment Computer and security 16 1997 321 326
23. D. Li, S. Hu, and S. Bai Proceedings of the EDCIS'2002 A uniform model for authorization and access control in enterprise information platform, Lecture Notes in Computer Science 2480 2002 180 192
24. A. Lin, and R. Brown The application of security policy to role-based access control and the common data security architecture Communication 23 2000 1584 1593
25. T.W. Malone Is empowerment just a fad ? Control, decision making and IT Sloan Management Review 1997 23 35
26. L. Maruster, J. Wortmann, A. Weijters, and W. van der Aalst Discovering distributed processes in supply chains H.S. Jagdev J.C. Wortmann H.J. Pels Collaborative Systems for Production Management 2002 Kluwer Academic Publishers 219 230
27. N. Mc Evoy, A. Whitcombe, Structured risk analysis, in: Proceedings of the InfraSec'2002, Lecture Notes in Computer Science 2437 (2002) 88-103.
28. B.C. Neuman, and T. Ts'o Kerberos: an authentication service for computer networks IEEE Communications 32 9 1994 33 38
29. M.P. Papazoglou Web services and business transactions. World Wide Web Internet and Web Information Systems 6 2003 49 91
30. C. Rolland, S. Nurcan, and G. Grosz Enterprise knowledge development: the process view Information and Management 36 1999 165 184
31. P.B. Thompson Privacy, secret and security Ethics and Information Technology 3 2001 13 19
32. US Department of Commerce, Safe Harbor Workbook 2003, Available at http://www.export.gov/safeharbor/sh_workbook.html.