Synchronization of Authorization Flow with Work Object Flow in a Document Production Workflow Using XACML and BPEL

The issue of synchronization of authorization flow with work object flow in a document production workflow environment is presented and discussed in this paper. We have shown how a work object flow is synchronized with the authorization flow using a central arbiter in Web service paradigms. The co-ordination of Web services is done using WS-BPEL which supports orchestration and XACML provides authorization for Web services. The synchronization is achieved by exploiting the obligation provisions in XACML.

[1]  Subrata Sinha,et al.  Extra-Tree: A model to organize execution traces of Web services , 2010, 2010 International Conference on Computer Information Systems and Industrial Management Applications (CISIM).

[2]  David W. Chadwick,et al.  Adding Support to XACML for Dynamic Delegation of Authority in Multiple Domains , 2006, Communications and Multimedia Security.

[3]  Subrata Sinha,et al.  Signature replacement attack and its counter-measures , 2010, 2010 IEEE 2nd International Advance Computing Conference (IACC).

[4]  S. Kumar Sinha,et al.  Limitations of Web Service Security on SOAP Messages in a Document Production Workflow Environment , 2008, 2008 16th International Conference on Advanced Computing and Communications.

[5]  Antonio F. Gómez-Skarmeta,et al.  Using Microsoft Office Infopath to Generate XACML Policies , 2006, SECRYPT.

[6]  Jian Yang,et al.  BPEL4RBAC: An Authorisation Specification for WS-BPEL , 2008, WISE.

[7]  Matjaz B. Juric,et al.  Business process execution language for web services , 2004 .