Role and task based authorization management for process-view

Mei Yu Wu, Duen-Ren Liu

Research output: Contribution to conferencePaperpeer-review

1 Scopus citations


Role-based authorizations for assigning tasks of workflows to roles/users are crucial to security management in workflow management systems. The authorizations must enforce separation of duty (SoD) constraints to prevent fraud and errors. This work discusses the authorization management of organizational roles in a process-view. A process-view, an abstracted process (workflow) derived from a base process, can provide adaptable task granularity to suit different needs of workflow participants. A novel authorization mechanism is proposed to derive a role's permissions on virtual activities based on the role's permissions on base activities. The proposed authorization mechanisms consider duty-conflict relationships among base activities to enforce SoD.

Original languageEnglish
Number of pages6
StatePublished - Jul 2007
EventSECRYPT 2007 - International Conference on Security and Cryptography - Barcelona, Spain
Duration: 28 Jul 200731 Jul 2007


ConferenceSECRYPT 2007 - International Conference on Security and Cryptography


  • Authorization management
  • Process-view
  • Role-based access control
  • Separation of duty.


Dive into the research topics of 'Role and task based authorization management for process-view'. Together they form a unique fingerprint.

Cite this