scholarly journals Context-sensitive constraints for access control of business processes

2018 ◽  
Vol 15 (1) ◽  
pp. 1-30
Author(s):  
Gordana Milosavljevic ◽  
Goran Sladic ◽  
Branko Milosavljevic ◽  
Miroslav Zaric ◽  
Stevan Gostojic ◽  
...  
Keyword(s):  
Access Control ◽  
Business Processes ◽  
Workflow Management ◽  
Management Systems ◽  
Sensitive Information ◽  
Workflow Management Systems ◽  
Workflow Systems ◽  
Context Sensitive ◽  
The Common ◽  
Role Based

Workflow management systems (WfMS) are used to automate and facilitate business processes of an enterprise. To simplify the administration, it is a common practice in many WfMS solutions to allocate a role to perform each activity of the process and then assign one or more users to each role. Typically, access control for WfMS is role-based with a support of constraints on users and roles. However, merely using role and constraints concepts can hardly satisfy modern access control requirements of a contemporary enterprise. Permissions should not solely depend on common static and dynamic principles, but they must be influenced by the context in which the access is requested. In this paper, we focus on the definition and enforcement of the context-sensitive constraints for workflow systems. We extended the common role-based constraints listed in literature with context-sensitive information and workflow specific components. Also, we propose a mechanism for enforcing such constraints within WfMS.

scholarly journals An Approach To E-Workflow Systems With The Use Of Patterns

2015 ◽  
Vol 3 (1) ◽  
pp. 4-20
Author(s):  
John Ndeta ◽  
Stamatia A. Katriou ◽  
Kerstin V. Siakas
Keyword(s):  
Business Processes ◽  
Workflow Management ◽  
Management Systems ◽  
Practical Application ◽  
Workflow Management Systems ◽  
Activity Diagram ◽  
Workflow Systems ◽  
Workflow Pattern ◽  
Uml Activity Diagram ◽  
Input Format

Abstract In today’s highly competitive and rapidly changing environment, e-businesses constantly have to modify their business processes, i.e. the flow of documents and tasks in a business also known as workflow. More flexible Workflow Management Systems are required to support these constantly changing processes. In this research a platform independent architecture for the design of e-workflow systems is illustrated. The architecture includes an information pool, namely a Workflow Pattern Repository, which contains patterns, which are repeatable solutions to reoccurring problems, in order to make the system more apt to change and assist the workflow designer/user in defining workflows faster and more accurately. The patterns in the repository are in the form of UML activity diagram templates. A straightforward input format for storing patterns in the repository is provided along with an example of its practical application.

scholarly journals An approach to e-workflow systems with the use of patterns

2015 ◽  
Vol 3 (1) ◽  
Author(s):  
John Ndeta ◽  
Stamatia-Ann Katriou ◽  
Kerstin Siakas
Keyword(s):  
Business Processes ◽  
Workflow Management ◽  
Management Systems ◽  
Practical Application ◽  
Workflow Management Systems ◽  
Activity Diagram ◽  
Workflow Systems ◽  
Workflow Pattern ◽  
Uml Activity Diagram ◽  
Input Format

In today’s highly competitive and rapidly changing environment, e-businesses constantly have to modify their business processes, i.e. the flow of documents and tasks in a business also known as workflow. More flexible Workflow Management Systems are required to support these constantly changing processes. In this research a platform independent architecture for the design of e-workflow systems is illustrated. The architecture includes an information pool, namely a Workflow Pattern Repository, which contains patterns, which are repeatable solutions to reoccurring problems, in order to make the system more apt to change and assist the workflow designer/user in defining workflows faster and more accurately. The patterns in the repository are in the form of UML activity diagram templates. A straightforward input format for storing patterns in the repository is provided along with an example of its practical application.  

Location-Aware Access Control for Mobile Workflow Systems

2011 ◽  
pp. 44-62 ◽  
Author(s):  
Michael Decker
Keyword(s):  
Information Systems ◽  
Access Control ◽  
Business Processes ◽  
Workflow Management ◽  
Mobile Technologies ◽  
Special Focus ◽  
Wireless Data ◽  
Workflow Systems ◽  
Location Aware ◽  
Wireless Data Transmission

Workflow management systems (WfMS) are a special class of information systems (IS) which support the automated enactment of business processes. Meanwhile there are WfMS which allow the execution of tasks using mobile computers like PDA with the ability of wireless data transmission. However, the employment of workflow systems as well as mobile technologies comes along with special security challenges. One way to tackle these challenges is the employment of location-aware access control to enforce rules that describe from which locations a user is allowed to perform which activities. The data model behind access control in termed Access Control Model (ACM). There are special ACM for mobile information systems as well as for WfMS, but no one that addresses mobile as well as workflow specific aspects. In the article we therefore discuss the specific constraints such a model should be able to express and introduce an appropriate ACM. A special focus is on location constraints for individual workflow instances.

Information flow control for workflow management systems

2014 ◽  
Vol 56 (6) ◽  
Author(s):  
Thomas Bauereiß ◽  
Dieter Hutter
Keyword(s):  
Flow Control ◽  
Information Flow ◽  
Business Processes ◽  
Open Systems ◽  
Workflow Management ◽  
User Interaction ◽  
Security Requirements ◽  
Management Systems ◽  
Workflow Management Systems ◽  
Information Flow Control

AbstractWorkflow management plays an important role in analyzing and automating business processes. Security requirements in workflow management systems are typically mapped to (role-based) access control configurations. This paper focuses on information flow control, taking into account implicit information leaks. The presented approach operates on a specification level in which no executable program is available yet. We illustrate the modeling of a workflow management system as a composition of state-event systems, each representing one of the activities of the workflow. This facilitates distributed deployment and eases verification by splitting up the verification of the overall system into verification of the individual components. Confidentiality requirements are modeled in terms of information flow predicates using the MAKS framework and verified following existing decomposition methodologies, which are adapted for open systems with ongoing user interaction. We discuss the interaction with other security requirements, notably separation of duty.

Model Checking of Constraint-Based Workflow Based on Linear Temporal Logic

2012 ◽  
Vol 601 ◽  
pp. 401-405
Author(s):  
Wen Bo Zhou ◽  
Shu Zhen Yao
Keyword(s):  
Model Checking ◽  
Temporal Logic ◽  
Business Processes ◽  
Workflow Management ◽  
Linear Temporal Logic ◽  
Management Systems ◽  
Workflow Management Systems ◽  
Model Based ◽  
Büchi Automaton ◽  
Constraint Based Models

The degree of flexibility of workflow management systems heavily influences the way business processes are executed. Constraint-based models are considered to be more flexible than traditional models because of their semantics: everything that does not violate constraints is allowed. More and more people use declarative languages to define workflow, such as linear temporal logic. But how to guarantee the correctness of the model based on the linear temporal logic is still a problem. This article proposes a way to verify the model based on Büchi automaton and gives the corresponding algorithms. Thus the verification of declarative workflow based on the linear temporal logic is solved.

Flexible Distributed Workflow Management Systems Design Based on CORBA

2012 ◽  
Vol 157-158 ◽  
pp. 839-842 ◽  
Author(s):  
Ya Li ◽  
Hai Rui Wang ◽  
Xiong Tong ◽  
Li Zhang
Keyword(s):  
Fault Tolerant ◽  
Workflow Management ◽  
Systems Design ◽  
Distributed Applications ◽  
General Purpose ◽  
Management Systems ◽  
Workflow Management Systems ◽  
Workflow Systems ◽  
Workflow System ◽  
Distributed Components

The paper addresses the problem of flexible Workflow Management Systems (WFMS) in distributed environment. Concerning the serious deficiency of flexibility in the current workflow systems, we describe how our workflow system meets the requirements of interoperability, scalability, flexibility, dependability and adaptability. With an additional route engine, the execution path will be adjusted dynamically according to the execution conditions so as to improve the flexibility and dependability of the system. A dynamic register mechanism of domain engines is introduced to improve the scalability and adaptability of the system. The system is general purpose and open: it has been designed and implemented as a set of CORBA services. The system serves as an example of the use of middleware technologies to provide a fault-tolerant execution environment for long running distributed applications. The system also provides a mechanism for communication of distributed components in order to support inter-organizational WFMS.

Sign in / Sign up

Export Citation Format

Share Document