scholarly journals Challenges in Aligning Enterprise Application Architectures to Business Process Access Control Requirements in Evolutional Changes

2021 ◽  
Author(s):  
Roman Pilipchuk ◽  
Stephan Seifermann ◽  
Robert Heinrich ◽  
Ralf Reussner
Keyword(s):  
Access Control ◽  
Business Process ◽  
Enterprise Application

scholarly journals Resource Controllability of Business Processes Under Conditional Uncertainty

2021 ◽  
Author(s):  
Matteo Zavatteri ◽  
Carlo Combi ◽  
Luca Viganò
Keyword(s):  
Access Control ◽  
Business Process ◽  
Process Management ◽  
Business Processes ◽  
Autonomous Systems ◽  
Research Problem ◽  
Current Research Problem ◽  
Constraint Networks ◽  
Process Engine ◽  
A Current

AbstractA current research problem in the area of business process management deals with the specification and checking of constraints on resources (e.g., users, agents, autonomous systems, etc.) allowed to be committed for the execution of specific tasks. Indeed, in many real-world situations, role assignments are not enough to assign tasks to the suitable resources. It could be the case that further requirements need to be specified and satisfied. As an example, one would like to avoid that employees that are relatives are assigned to a set of critical tasks in the same process in order to prevent fraud. The formal specification of a business process and its related access control constraints is obtained through a decoration of a classic business process with roles, users, and constraints on their commitment. As a result, such a process specifies a set of tasks that need to be executed by authorized users with respect to some partial order in a way that all authorization constraints are satisfied. Controllability refers in this case to the capability of executing the process satisfying all these constraints, even when some process components, e.g., gateway conditions, can only be observed, but not decided, by the process engine responsible of the execution. In this paper, we propose conditional constraint networks with decisions (CCNDs) as a model to encode business processes that involve access control and conditional branches that may be both controllable and uncontrollable. We define weak, strong, and dynamic controllability of CCNDs as two-player games, classify their computational complexity, and discuss strategy synthesis algorithms. We provide an encoding from the business processes we consider here into CCNDs to exploit off-the-shelf their strategy synthesis algorithms. We introduce $$\textsc {Zeta}$$ Z E T A , a tool for checking controllability of CCNDs, synthesizing execution strategies, and executing controllable CCNDs, by also supporting user interactivity. We use $$\textsc {Zeta}$$ Z E T A to compare with the previous research, provide a new experimental evaluation for CCNDs, and discuss limitations.

Business Process and Workflow Modeling in Web Services

2011 ◽  
pp. 466-470
Author(s):  
Vincent Yen
Keyword(s):  
Supply Chain ◽  
Web Services ◽  
Web Service ◽  
Business Process ◽  
Business Processes ◽  
Workflow Management ◽  
Heterogeneous Systems ◽  
Application Integration ◽  
Enterprise Application ◽  
Computing Platforms

In large organizations, typical systems portfolios consist of a mix of legacy systems, proprietary applications, databases, off-the-shelf packages, and client-server systems. Software systems integration is always an important issue and yet a very complex and difficult area in practice. Consider the software integration between two organizations on a supply chain; the level of complexity and difficulty multiply quickly. How to make heterogeneous systems work with each other within an enterprise or across the Internet is of paramount interest to businesses and industry. Web services technologies are being developed as the foundation of a new generation of business-to-business (B2B) and enterprise application integration (EAI) architectures, and important parts of components as grid (www.grid.org), wireless, and automatic computing (Kreger, 2003). Early technologies in achieving software application integration use standards such as the common object request broker architecture (CORBA) of the Object Management Group (www.omg.org), the distributed component object model (DCOM) of Microsoft, and Java/RMI, the remote method invocation mechanism. CORBA and DCOM are tightly coupled technologies, while Web services are not. Thus, CORBA and DCOM are more difficult to learn and implement than Web services. It is not surprising that the success of these standards is marginal (Chung, Lin, & Mathieu, 2003). The development and deployment of Web services requires no specific underlying technology platform. This is one of the attractive features of Web services. Other favorable views on the benefits of Web services include: a simple, lowcost EAI supporting the cross-platform sharing of functions and data; and an enabler of reducing integration complexity and time (Miller, 2003). To reach these benefits, however, Web services should meet many technology requirements and capabilities. Some of the requirements include (Zimmermann, Tomlinson & Peuser, 2003): • Automation Through Application Clients: It is required that arbitrary software applications running in different organizations have to directly communicate with each other. • Connectivity for Heterogeneous Worlds: Should be able to connect many different computing platforms. • Information and Process Sharing: Should be able to export and share both data and business processes between companies or business units. • Reuse and Flexibility: Existing application components can be easily integrated regardless of implementation details. • Dynamic Discovery of Services, Interfaces, and Implementations: It should be possible to let application clients dynamically, i.e., at runtime, look for and download service address, service binding, and service interface information. • Business Process Orchestration Without Programming: Allows orchestration of business activities into business processes, and executes such aggregated process automatically. The first five requirements are technology oriented. A solution to these requirements is XML-based Web services, or simply Web services. It employs Web standards of HTTP, URLs, and XML as the lingua franca for information and data encoding for platform independence; therefore it is far more flexible and adaptable than earlier approaches. The last requirement relates to the concept of business workflow and workflow management systems. In supply chain management for example, there is a purchase order process at the buyer’s side and a product fulfillment process at the supplier’s side. Each process represents a business workflow or a Web service if it is automated. These two Web services can be combined into one Web service that represents a new business process. The ability to compose new Web services from existing Web services is a powerful feature of Web services; however, it requires standards to support the composition process. This article will provide a simplified exposition of the underlying basic technologies, key standards, the role of business workflows and processes, and critical issues.

Building Dynamic Business Process in P2P Semantic Web

2011 ◽  
pp. 180-198
Author(s):  
Timon C. Du ◽  
Eldon Y. Li
Keyword(s):  
Semantic Web ◽  
Business Process ◽  
Process Management ◽  
Early Stage ◽  
Workflow Management ◽  
Enterprise Application Integration ◽  
Integration System ◽  
Business World ◽  
Enterprise Application ◽  
Semantic Data

Business process management systems such as the workflow management system and the enterprise application integration system manage process flow on a minute-by-minute basis in various application domains. In the conventional approach, the business process must be predefined before it is implemented. However, involving business users in the early stage of the design phase is neither efficient nor realistic in the dynamic business world. This study proposes a framework to implement a dynamic business process in the P2P Semantic Web, which provides the flexibility to dynamically alter business process and to take semantic data into consideration. The system is demonstrated by a case of a manufacturer that is processing an order.

Reuse across Multiple Architectures

2014 ◽  
pp. 1927-1955
Author(s):  
Indika Kumara ◽  
Chandana Gamage
Keyword(s):  
Business Process ◽  
Business Process Management ◽  
Process Management ◽  
Heterogeneous Systems ◽  
Enterprise Application Integration ◽  
Software Systems ◽  
Application Integration ◽  
Reusable Components ◽  
Enterprise Application ◽  
Systematic Reuse

The commonality across software systems can be exploited to develop multiple heterogeneous systems successfully without undue cost, time, and effort. The systematic reuse across different systems is of paramount importance. With a well-planned reuse approach, a vendor can offer individualized products, which are products tailored to meet the requirements of a particular user effectively, as well as the products constructed to deliver solutions for a greater variety of application domains such as enterprise application integration and business process management. This chapter describes the development of software systems having different architectures reusing most of the implementations of the required functionalities as-is. It presents a systematic process for crafting multi-architecture reusable components and for using those components in formulating software systems. Furthermore, the chapter highlights the significance of the strategic reuse across systems in three contemporary research spheres.

A Trusted Process Security Model for the Access to Power Enterprise Data Center

2011 ◽  
Vol 341-342 ◽  
pp. 472-477
Author(s):  
Ke He Wu ◽  
Hong Jiang Ji ◽  
Long Chen ◽  
Tong Zhang
Keyword(s):  
Access Control ◽  
Business Process ◽  
Data Center ◽  
Business Processes ◽  
Security Model ◽  
Business Systems ◽  
Power Enterprise

Aiming the lack of the authentication and access control when the business processes of the power business systems visit the enterprise data center, this article proposes a trusted process security model for the access to the power enterprise data center. The model gives the concept of “Trusted Process” firstly, and then builds “Trusted Process List” and the “Process Access List” to convert the business process into trusted process, and finally implements the authentication and access control of the business processes when visiting the data center.

A Flexible Workflow Model of Role Based Access Control

2015 ◽  
Vol 733 ◽  
pp. 784-787
Author(s):  
Jiang Min Zhao ◽  
Jian Kang ◽  
Tian Ge Li
Keyword(s):  
Access Control ◽  
Business Process ◽  
Role Based Access Control ◽  
Workflow Model ◽  
Control Technology ◽  
Dynamic Management ◽  
Role Based ◽  
Definition Of ◽  
Flexible Operation

For the shortcomings of the traditional workflow in flexibility, this paper analyzes the advantages of Role Based Access Control Technology (RBAC) in realizing procedure permission dynamic management. With RBAC applied in it, this paper also constructs the flexible workflow model of Role Based Access Control and gives out the definition of the engine as well as the components concerned. In addition, it also solves the problems of the flexible operation of resource and dynamic assigning tasks in the business process, and applies the engine into the specific business process.

Sign in / Sign up

Export Citation Format

Share Document