Inderscience PublishersInderscience PublishersInderscience Publishers
  PUBLISHERS OF DISTINGUISHED ACADEMIC, SCIENTIFIC AND PROFESSIONAL JOURNALS
Home    About Us    Contact Us    Site Map    Help  
For readers
Subscription information
Order articles
Sample journals
Latest issues
For authors
Submission of papers
Notes for authors
Calls for papers
Services
Search
Newsletter
Blog
TOC alerting
RSS news feeds
OAI repository
Library form
Register with Inderscience
Feedback
Noticeboard
New journals
Conferences

Article Abstract

Title: Workflow authorisation in mediator-free environments
  Author: Mohamed Shehab, Elisa Bertino, Arif Ghafoor   Email author(s)
  Address: Department of Electrical and Computer Engineering and Center for Education and Research in Information Assurance and Security (CERIAS), Purdue University, West Lafayette, IN, USA. ' Department of Computer Science, Electrical and Computer Engineering and CERIAS, Purdue University, West Lafayette, IN, USA. ' Electrical and Computer Engineering and CERIAS, Purdue University, West Lafayette, IN, USA
  Journal: International Journal of Security and Networks 2006 - Vol. 1, No.1/2  pp. 2 - 12
  Abstract: WorkFlow Management Systems (WFMS) coordinate and streamline business processes. Acquiring workflow authorisations and managing workflow authorisation constraints is a challenging problem. Current WFMSs assume a centralised global workflow authorisation model. In this paper, we propose a distributed workflow authorisation model with no central authorisation manager for a mediator-free environment. We provide an on-demand task discovery protocol that enables domains to discover tasks available in other domains. We formulate the workflow authorisation problem as a constraint satisfaction problem to select access paths that satisfy all the workflow authorisation constraints. We propose the Workflow Minimal Authorisation Problem (WMAP), which selects minimal authorisations required to execute the workflowtasks. In addition, we investigate access path overlaps to allow tasks in the same session to share authorisations and we present the Workflow Minimal Authorisation Problem with path Overlaps (WMAPO). Finally, we formulate integer programmes to solve both the WMAP and WMAPO.
  Keywords: decentralised workflow authorisation; decentralised secure interoperability; task discovery; role-based access control; workflow management systems; networks; distributed WFMS; security; mediator-free environments; constraint satisfaction; access path overlaps.
  DOI: 10.1504/IJSN.2006.010819
  Access for editors and complimentary subscribers       Access for Subscribers   Purchase this Paper        We welcome your comments about this paper Comment on the Paper      
 
Copyright © 2004-2006 Inderscience Enterprises Limited. All rights reserved.