Deploying security policy in intra and inter workflow management systems

Proceedings - International Conference on Availability, Reliability and Security, ARES 2009

Volumn , Issue , 2009, Pages 58-65

  Ayed, Samiha ^a   Cuppens Boulahia, Nora ^a   Cuppens, Frédéric ^a  

^a ECOLE DES MINES DE NANTES   (France)

Author keywords

Orbac; Security policy; WFMS

Indexed keywords

CRITICAL ISSUES; FLOW OF CONTROL; INTER-ORGANIZATIONAL WORKFLOWS; MANAGEMENT SYSTEMS; OPERATIONAL BUSINESS; ORBAC; PROCESS EFFECTIVENESS; SECURE EXECUTION; SECURITY POLICY; WFMS; WORK-FLOWS; WORKFLOW MANAGEMENT SYSTEMS; WORKFLOW TECHNOLOGY;

COORDINATION REACTIONS; SECURITY OF DATA; SECURITY SYSTEMS; WORK SIMPLIFICATION;

MANAGEMENT;

EID: 70349657130     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ARES.2009.152     Document Type: Conference Paper

References (15)

1. A. Abou el Kalam, R. El Baida, P. Balbiani, S. Benferhat, F. Cuppens,Y. Deswarte, A. Mie´ge, C. Saurel and G. Trouessin Organization Based Access Control. IEEE 4th International Workshop on Policies for Distributed Systems and Networks, Lake Come, Italy, 2003.
2. F. Cuppens and N. Cuppens-Boulahia Modelling Contestual Security Policies. International Journal of Information Systems, vol 7(4), 2008.
3. F. Cuppens, N. Cuppens-Boulahia, and A. Miége Inheritance hierarchies in the Or-BAC model and application in a network environment. FCS'04, Turku, Finlande, 2004.
4. F. Cuppens, N. Cuppens-Boulahia, T. Sans and A. Miége A formal approach to specify and deploy a network security policy. Second FAST Workshop, Toulouse, France, 2004.
5. Samiha Ayed, Fre´de´ric Cuppens and Nora Cuppens-Boulahia An integrated model for access control and information flow requirements.Proceedings of ASIAN'07, Doha, Qatar, 2007.
6. Samiha Ayed, Fre´de´ric Cuppens and Nora Cuppens-Boulahia Deploying access control in distributed workflow. Sixth AISC Conference - Volume 81, Wollongong, NSW, Australia, 2008.
7. Jan Kiszka and Bernardo Wagner Domain and Type Enforcement for Real-Time Operating Systems. ETFA'03, Emerging Technologies and Factory Automation, 2003.
8. Lee Badger, Daniel F. Sterne, David L. Sherman, Kenneth M. Walker, Sheila A. Haghighat Practical Domain and Type Enforcement for Unix. IEEE Symposium on Security and Privacy, Oakland, CA, USA, 1995.
9. W. E. Boebert, R. Y. Kain, W. D. Young The extended Access Matrix Model of Computer Security. ACM Sigsoft Software Engineering Notes, vol 10(4), 1985.
10. William E. Boebert, Richard Y. Kain A further Note on the Confinment Problem. IEEE 1996 International Carnahan Conference on Security Technology, New York, 1996.
11. E. Bertino, E. Ferrari, V. Alturi The Specification and Enforcement of Authorization Constraints in Workflow Management Systems. ACMTransactions on Information and System Security, 1999.
12. N.R. Adam, V. Atluri and W-K. Huang Modeling and Analysis of Workflows Using Petri Nets. Journal of Intelligent Information Systems, Special Issue on Workflow and Process Management, Volume 10, 1998.
13. P. Hung, Karlapalem A Secure Workflow Model. AISW (Australian Information Security Workshop), 1999.
14. V. Atluri,W. Huang An authorization Model for Workflows. Proceedings of the Fifth European Symposium on Research in Computer Security, Rome, Italy, pages 44-64, 1996.
15. W. Huang, V. Atluri SecureFlow: A Secure Web-enabled Workflow Management System. Proceedings of the fourth ACM workshop onRole-based access control, p.83-94, Fairfax, Virginia, 1999.