Role and task based authorization management for process-view

Mei Yu Wu, Duen-Ren Liu

研究成果同行評審

1 引文 斯高帕斯(Scopus)

摘要

Role-based authorizations for assigning tasks of workflows to roles/users are crucial to security management in workflow management systems. The authorizations must enforce separation of duty (SoD) constraints to prevent fraud and errors. This work discusses the authorization management of organizational roles in a process-view. A process-view, an abstracted process (workflow) derived from a base process, can provide adaptable task granularity to suit different needs of workflow participants. A novel authorization mechanism is proposed to derive a role's permissions on virtual activities based on the role's permissions on base activities. The proposed authorization mechanisms consider duty-conflict relationships among base activities to enforce SoD.

原文English
頁面85-90
頁數6
DOIs
出版狀態Published - 7月 2007
事件SECRYPT 2007 - International Conference on Security and Cryptography - Barcelona, 西班牙
持續時間: 28 7月 200731 7月 2007

Conference

ConferenceSECRYPT 2007 - International Conference on Security and Cryptography
國家/地區西班牙
城市Barcelona
期間28/07/0731/07/07

指紋

深入研究「Role and task based authorization management for process-view」主題。共同形成了獨特的指紋。

引用此