A Role-Based Secure Workflow Model
Workflow Management System is used for supporting many day-to-day workflows in large organizations. But heterogeneous and distributed computing systems make security management of WFMS decentralized, thus its security must be noticed. In this paper, we propose a role-based secure workflow model which realizes the principle of separation of duties (SoD), the principle of least privilege, integrity, authorization and availability. We also portray the whole model as a multi-layered architecture with a multilayered state graph for expressing and analyzing the flow of authorization. The layers are, respectively, role layer, task layer, control layer and data layer.
Chunyan Song Jianliang Xu Shenhua Li Mingqiang Wang
Department of Computer Science and Technology,Ocean University of China, Qingdao, 266100, P.R.China Laboratory of Cryptographic Technology and Information Security,Shandong University, Jinan, 250100,
国际会议
第六届网格与协同计算国际会议(The Sixth International Conference on Grid and Cooperative Computing GCC 2007)
乌鲁木齐
英文
764-771
2007-08-16(万方平台首次上网日期,不代表论文的发表时间)