RB-WAC: New approach for access control in workflows

Today, workflow systems which aim the automation of a business process involving the coordinated execution of multiple tasks performed by different entities have experienced an increase use. Unfortunately, little Workflow Management Systems (WFMS) take into account access control constraints such as Separation of Duties (SoD). In this paper, we present a new approach, RB-WAC (Role-based Workflow Access Control), to participate in amending the above shortcomings. This approach which is based on the standard of access control RBAC, introduces new rules to detect potential conflicts related to a workflow instance and also suggests the use of the concept of priority in order to resolve these conflicts.

[1]  Chokri Ben Amar,et al.  An authorization and access control model for workflow , 2004, First International Symposium on Control, Communications and Signal Processing, 2004..

[2]  Jan H. P. Eloff,et al.  Separation of duties for access control enforcement in workflow environments , 2001, IBM Syst. J..

[3]  Reinhardt A. Botha,et al.  Conflict analysis as a means of enforcing static separation of duty requirements in workflow environments , 2000, South Afr. Comput. J..

[4]  Shih-Chien Chou,et al.  Controlling information access in workflow management systems using RBAC‐based model , 2007 .

[5]  Baoyi Wang,et al.  The Research on Role-Based Access Control Mechanism for Workflow Management System , 2004, GCC.

[6]  Jason Crampton A reference monitor for workflow systems with constrained task execution , 2005, SACMAT '05.

[7]  Hao Jiang,et al.  RTFW: An Access Control Model for Workflow Environment , 2006, 2006 10th International Conference on Computer Supported Cooperative Work in Design.

[8]  Gustavo Alonso,et al.  Functionality and Limitations of Current Workflow Management Systems , 1997, unpublished.

[9]  Nora Cuppens-Boulahia,et al.  Deploying Access Control in Distributed Workflow , 2008, AISC.

[10]  Wei Xu,et al.  SOWAC: a service-oriented workflow access control model , 2004, Proceedings of the 28th Annual International Computer Software and Applications Conference, 2004. COMPSAC 2004..

[11]  Yuqing Sun,et al.  PRES: a practical flexible RBAC workflow system , 2005, ICEC '05.