Skip to Main Content

IEEE.org| IEEE Xplore Digital Library| IEEE Standards| IEEE Spectrum| More Sites

Cart (Loading....) | Create Account | Sign In

Author Search^beta | Advanced Search | Preferences | | More Search Options

Browse Conference Publications > Policies for Distributed Syst ...

An XACML Extension for Business Process-Centric Access Control Policies

Full Text Sign-In or Purchase

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Username

Password

Purchase PDF
Other Formats

Formats	Non-Member	Member
PDF	$31	$13

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

Already Purchased? View Article
Subscription Options Learn More

3 Author(s)

Wolter, C. ; SAP Res. CEC Karlsruhe, Karlsruhe, Germany ; Weiss, C. ; Meinel, C.

Administrative controls exist to ensure that business activities are correctly managed and controlled according to corporate and legal regulations. With many organisations reliant on complex IT solutions these controls relate to functionality of software. In this paper we present an extension for business process models to express administrative controls, such as role-based, mandatory or dynamic separation of duty access control policies on the abstraction level of business process models. A model-driven approach is applied to generate platform-specific policies. As an example we utilise the eXtensible Access Control Markup Language (XACML).

Published in:
Policies for Distributed Systems and Networks, 2009. POLICY 2009. IEEE International Symposium on

Date of Conference: 20-22 July 2009

Page(s):: 166 - 169
E-ISBN :: 978-0-7695-3742-9
Print ISBN:: 978-0-7695-3742-9
INSPEC Accession Number:: 10806615

Conference Location :: London
Digital Object Identifier :: 10.1109/POLICY.2009.21
Product Type:: Conference Publications

Author(s)

Wolter, C.
SAP Res. CEC Karlsruhe, Karlsruhe, Germany
Weiss, C. ; Meinel, C.

INSPEC: CONTROLLED INDEXING

authorisation

business data processing

corporate modelling

INSPEC: NON CONTROLLED INDEXING

XACML

administrative controls

business activity

business process model

business process-centric access control policy

corporate regulation

duty access control

eXtensible Access Control Markup Language

legal regulation

role-based access control

AUTHOR KEYWORDS

Access Control

Business Process

Model-Driven

XACML

IEEE TERMS

Access control

Business communication

Communication system security

Control systems

Customer profiles

Data security

Information security

Information systems

Insurance

Protection

Referenced Items are not available for this document.

No versions found for this document.

Standards Dictionary Terms are available to subscribers only.

| Create Account

IEEE Account

Purchase Details

Profile Information

Need Help?

US & Canada: +1 800 678 4333
Worldwide: +1 732 981 0060
Contact & Support

IEEE Advancing Technology for Humanity

About IEEE Xplore | Contact | Help | Terms of Use | Nondiscrimination Policy | Site Map | Privacy & Opting Out of Cookies

A not-for-profit organization, IEEE is the world's largest professional association for the advancement of technology.
© Copyright 2013 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.