AW-RBAC: Access control in adaptive workflow systems

Proceedings of the 2011 6th International Conference on Availability, Reliability and Security, ARES 2011

Volumn , Issue , 2011, Pages 27-34

  Leitner, Maria ^a   Rinderle Ma, Stefanie ^a   Mangler, Juergen ^b  

^a UNIVERSITY OF VIENNA   (Austria)

^b SBA Research   (Austria)

Author keywords

Access control; Process aware information systems; RBAC

Indexed keywords

ADAPTIVE WORKFLOW; ADMINISTRATION COSTS; ADMINISTRATIVE CHANGES; APPLICATION COMPONENTS; CONTROL FLOWS; DATA FLOW; ORGANIZATIONAL STRUCTURES; PROCESS-AWARE INFORMATION SYSTEMS; PROOF OF CONCEPT; RBAC; RBAC MODEL; ROLE-BASED ACCESS CONTROL MODEL; SECURITY PROBLEMS; WORK-FLOW SYSTEMS;

ADAPTIVE CONTROL SYSTEMS; ENGINEERING RESEARCH; SECURITY SYSTEMS;

ACCESS CONTROL;

EID: 80455140452     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ARES.2011.15     Document Type: Conference Paper

References (17)

1. M. Weske, Business Process Management: Concepts, Languages, Architectures. Springer, 2007.
2. V. Atluri and W. Huang, "An authorization model for workflows," in Computer Security - ESORICS 96, 1996, pp. 44-64. (Pubitemid 126128893)
3. P. C. K. Hung and K. Karlapalem, "A secure workflow model," in Australasian information security workshop conference on ACSW frontiers 2003 - 21, 2003, pp. 33-41.
4. B. Weber, M. Reichert, and S. Rinderle-Ma, "Change patterns and change support features - enhancing flexibility in processaware information systems." Data and Knowledge Engineering, vol. 66, no. 3, pp. 438-466, 2008.
5. R. Sandhu, V. Bhamidipati, and Q. Munawer, "The ARBAC97 model for role-based administration of roles," ACM Trans. Inf. Syst. Secur., vol. 2, no. 1, pp. 105-135, 1999.
6. N. Li and Z. Mao, "Administration in role-based access control," in 2nd ACM symposium on Information, computer and communications security, 2007, pp. 127-138. (Pubitemid 47479234)
7. B. Weber, M. Reichert, W. Wild, and S. Rinderle, "Balancing flexibility and security in adaptive process management systems," On the Move to Meaningful Internet Systems 2005: CoopIS, DOA, and ODBASE, pp. 59-76, 2005. (Pubitemid 43734297)
8. P. Dadam and M. Reichert, "The ADEPT project: a decade of research and development for robust and flexible process support," Comp. Science - Research and Development, 2009.
9. N. Russell, W. M. van der Aalst, A. H. ter Hofstede, and D. Edmond, "Workflow resource patterns: Identification, representation and tool support," in Proc. Int'l Conf. Advanced Information Systems Engineering, 2005, pp. 216-232. (Pubitemid 41336105)
10. S. Rinderle-Ma and M. Reichert, "Comprehensive life cycle support for access rules in information systems: The CEOSIS project," Enterprise Inf. Syst., vol. 3, no. 3, pp. 219-251, 2009.
11. D. Domingos, A. Rito-Silva, and P. Veiga, "Authorization and access control in adaptive workflows," in Computer Security - ESORICS 2003, 2003, pp. 23-38. (Pubitemid 37311861)
12. G. Stuermer, J. Mangler, and E. Schikuta, "Building a modular service oriented workflow engine," in Service-Oriented Computing and Applications (SOCA), 2009 IEEE International Conference on, 2010, p. 1-4.
13. R. Sandhu, D. Ferraiolo, and R. Kuhn, "The NIST model for role-based access control: towards a unified standard," in Proc. of the fifth ACM workshop on Role-based access control, 2000, pp. 47-63.
14. J. Crampton, "Understanding and developing role-based administrative models," in Proc. of the 12th ACM Conference on Computer and communications security, 2005, pp. 158-167. (Pubitemid 44022000)
15. S. Oh and S. Park, "Task-role-based access control model," Information Systems, vol. 28, no. 6, pp. 533-562, 2003.
16. J. Wainer, P. Barthelmess, and A. Kumar, "W-RBAC - a workflow security model incorporating controlled overriding of constraints," International Journal of Cooperative Information Systems, vol. 12, no. 4, pp. 455-485, 2003. (Pubitemid 38000660)
17. J. Jürjens, M. Lehrhuber, and G. Wimmel, "Model-based design and analysis of permission-based security," in Engineering of Complex Computer Systems, 2005. ICECCS 2005. Proc. 10th IEEE Int'l Conf. on, 2005, pp. 224-233. (Pubitemid 41495749)