By Topic

FWAM: A flexible workflow authorization model using extended RBAC

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Le Yang ; Dept. of Syst. Manage. & Eng., Inje Univ., Kimhae ; Yongsun Choi ; Myeonggil Choi ; Xinlei Zhao

Security services for workflow systems are becoming increasingly important for the interoperability of cross- enterprises in insecure environments. As a security service, the authorization mechanism for confidentiality and integrity has gained growing attention in both the research world and the industry. However, the traditional workflow authorization model (WAM) mainly focuses on the synchronization of authorization flow by using authorization templates (ATs) and is limited in encountering the consequences of workflow changes and/or exceptions, which are very common in today's dynamic business environment. In this paper, we propose an integrated approach of a flexible WAM with dynamic checking features to handle workflow changes and exceptions. Extended temporal role-based access control and flexible workflow authorization template are adopted to further enhance the traditional AT ensuring information confidentiality and integrity. The method of implementing the proposed model is also introduced.

Published in:

Computer Supported Cooperative Work in Design, 2008. CSCWD 2008. 12th International Conference on

Date of Conference:

16-18 April 2008