Welcome to the InfoSci Platform
An Access Control Framework for WS-BPEL Processes

An Access Control Framework for WS-BPEL Processes

Federica Paci, Elisa Bertino, Jason Crampton
Copyright: © 2013 |Pages: 25
ISBN13: 9781466621367|ISBN10: 1466621362|EISBN13: 9781466621374
DOI: 10.4018/978-1-4666-2136-7.ch015
Cite Chapter Cite Chapter

MLA

Paci, Federica, et al. "An Access Control Framework for WS-BPEL Processes." Digital Rights Management: Concepts, Methodologies, Tools, and Applications, edited by Information Resources Management Association, IGI Global, 2013, pp. 310-334. https://doi.org/10.4018/978-1-4666-2136-7.ch015

APA

Paci, F., Bertino, E., & Crampton, J. (2013). An Access Control Framework for WS-BPEL Processes. In I. Management Association (Ed.), Digital Rights Management: Concepts, Methodologies, Tools, and Applications (pp. 310-334). IGI Global. https://doi.org/10.4018/978-1-4666-2136-7.ch015

Chicago

Paci, Federica, Elisa Bertino, and Jason Crampton. "An Access Control Framework for WS-BPEL Processes." In Digital Rights Management: Concepts, Methodologies, Tools, and Applications, edited by Information Resources Management Association, 310-334. Hershey, PA: IGI Global, 2013. https://doi.org/10.4018/978-1-4666-2136-7.ch015

Export Reference

Mendeley
Favorite

Abstract

Business processes –the next generation workflows- have attracted considerable research interest in the last fifteen years. More recently, several XML-based languages have been proposed for specifying and orchestrating business processes, resulting in the WS-BPEL language. Even if WS-BPEL has been developed to specify automated business processes that orchestrate activities of multiple Web services, there are many applications and situations requiring that people be considered as additional participants that can influence the execution of a process. Significant omissions from WS-BPEL are the specification of activities that require interactions with humans to be completed, called human activities, and the specification of authorization information associating users with human activities in a WS-BPEL business process and authorization constraints, such as separation of duty, on the execution of human activities. In this chapter, we address these deficiencies by introducing a new type of WS-BPEL activity to model human activities and by developing RBAC-WS-BPEL, a role based access control model for WS-BPEL and BPCL, a language to specify authorization constraints.

Request Access

You do not own this content. Please login to recommend this title to your institution's librarian or purchase it from the IGI Global bookstore.