论文信息 - Security Requirements of E-Business Processes

Security Requirements of E-Business Processes

This paper presents an open framework for the analysis of security requirements of business processes in electronic commerce. The most important dimensions of the framework are security objectives (confidentiality, integrity, availability, accountability), the phases of and the places/parties involved in the process. The approach is of open nature so that it can be adapted to the heterogeneous needs of different application scenarios. The discussion of business processes within a virtual shopping mall illustrates the capacity and potential of the framework

Konstantin Knorr | Susanne Röhrig | Konstantin Knorr | Susanne Röhrig

[1] Robert W. Shirey,et al. Internet Security Glossary , 2000, RFC.

[2] Günther Pernul,et al. Zur Bedeutung von Sicherheit in interorganisationellen Workflows , 1997, Wirtsch..

[3] N. Adam,et al. Electronic Commerce: Current Research Issues and Applications , 1996 .

[4] S. Jajodia,et al. Information Security: An Integrated Collection of Essays , 1994 .

[5] Daniel W. Manchala. E-Commerce Trust Metrics and Models , 2000, IEEE Internet Comput..

[6] Birgit Pfitzmann,et al. SEMPER - Secure Electronic Marketplace for Europe , 2000, Lecture Notes in Computer Science.

[7] William A. Wulf,et al. TOWARDS A FRAMEWORK FOR SECURITY MEASUREMENT , 1997 .

[8] Pino Calzo,et al. Prozessmodellierung im Krankenhaus , 1999 .

[9] Günther Pernul,et al. Viewing Business-Process Security from Different Perspectives , 1999, Int. J. Electron. Commer..

[10] Vladimir Zwass,et al. Electronic Commerce: Structures and Issues , 1996, Int. J. Electron. Commer..

[11] James H. Burrows. Guidelines for Security of Computer Applications , 1980 .

[12] Konstantin Knorr,et al. Towards a Secure Web-Based Health Care Application , 2000, ECIS.

[13] Konstantin Knorr,et al. Security of Electronic Business Applications - Structure and Quantification , 2000, EC-Web.

[14] Konstantin Knorr,et al. Sicherheit von E-Business-Anwendungen — Struktur und Quantifizierung , 2000, Wirtschaftsinf..

[15] Lauren Wood. 技術解説 IEEE Internet Computing , 1999 .