ROLE AND TASK BASED AUTHORIZATION MANAGEMENT FOR PROCESS-VIEW
Mei-Yu Wu, Duen-Ren Liu
2007
Abstract
Role-based authorizations for assigning tasks of workflows to roles/users are crucial to security management in workflow management systems. The authorizations must enforce separation of duty (SoD) constraints to prevent fraud and errors. This work discusses the authorization management of organizational roles in a process-view. A process-view, an abstracted process (workflow) derived from a base process, can provide adaptable task granularity to suit different needs of workflow participants. A novel authorization mechanism is proposed to derive a role’s permissions on virtual activities based on the role’s permissions on base activities. The proposed authorization mechanisms consider duty-conflict relationships among base activities to enforce SoD.
DownloadPaper Citation
in Harvard Style
Wu M. and Liu D. (2007). ROLE AND TASK BASED AUTHORIZATION MANAGEMENT FOR PROCESS-VIEW . In Proceedings of the Second International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2007) ISBN 978-989-8111-12-8, pages 85-90. DOI: 10.5220/0002126300850090
in Bibtex Style
@conference{secrypt07,
author={Mei-Yu Wu and Duen-Ren Liu},
title={ROLE AND TASK BASED AUTHORIZATION MANAGEMENT FOR PROCESS-VIEW},
booktitle={Proceedings of the Second International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2007)},
year={2007},
pages={85-90},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002126300850090},
isbn={978-989-8111-12-8},
}
in EndNote Style
TY - CONF
JO - Proceedings of the Second International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2007)
TI - ROLE AND TASK BASED AUTHORIZATION MANAGEMENT FOR PROCESS-VIEW
SN - 978-989-8111-12-8
AU - Wu M.
AU - Liu D.
PY - 2007
SP - 85
EP - 90
DO - 10.5220/0002126300850090