An Improved Role-Based Workflow Access Control Model

The Role-Based Access Control (RBAC) model is widely accepted as the model of access control of workflow management system (WFMS).However, the RBAC model exist a lot of limit when it describe the authorization constraint of access control. Especially , the RBAC model cannot express the transaction character and the phase authorization constraint when the role and the user perform the task. This paper proposed an improved role-Based access control model for WFMS. The new authorization concepts for WfMS are defined respectively. The access control rules of IRBAC model are build, which can express complex access control constraints for WfMS.

[1]  Ravi S. Sandhu,et al.  Rationale for the RBAC96 family of access control models , 1996, RBAC '95.

[2]  Ravi S. Sandhu,et al.  A model for role administration using organization structure , 2002, SACMAT '02.

[3]  Leon Gommans,et al.  Job-centric security model for open collaborative environment , 2005, Proceedings of the 2005 International Symposium on Collaborative Technologies and Systems, 2005..

[4]  Elisa Bertino,et al.  TRBAC , 2001, ACM Trans. Inf. Syst. Secur..

[5]  Ramaswamy Chandramouli,et al.  The Queen's Guard: A Secure Enforcement of Fine-grained Access Control In Distributed Data Analytics Platforms , 2001, ACM Trans. Inf. Syst. Secur..