Abstract
The application of traditional Role-Based Access Control in workflow system can reduce the complexity of privilege management. However, merely using role concept can hardly reflect enterprise’ organization structure and can not specify organization unit for task; moreover, permission inheritance relation among roles isn’t consistent with the fact of workflow system. This paper proposed an organization and task based access control model to amend the above shortcomings. Combined with the proposed model, through adding users’ blacklist to each task, a dynamic access control algorithm is given. In practice, the model OTBAC with the access control algorithm is flexible and feasible.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Sandhu, R., Coyne, E.J., Feinstein, H.L., et al.: Role-Based Access Control Models. IEEE Computer 29, 38–47 (1996)
Huang, W.-K., Atluri, V.: Secureflow: A Secure Web-based Workflow Management System. In: Proc. of the 4th ACM Workshop on Role-based Access Control Fairfax, VA, USA, pp. 83–94 (1999)
Bertino, E., Ferrari, E., Atluri, V.: A Flexible Model Supporting the Specification and Enforcement of Role-based Authorizations in Workfiow Management Systems. In: Proc of the 2nd ACM Workshop on Role-based Access Contro, pp. 1–12. ACM Press, New York (1997)
Kandala, S., Sandhu, R.: Secure Role-based Workflow Mode. In: Proc of the 15th Annual Working Conference on Database and Application Security, Dordrecht, pp. 1–14. Kluwer Academic Publishers, Norwell, MA, USA (2001)
Fan, H., Guang-Lin, X.: A Family of RBAC-based Workflow Authorization Models. Wuhan University Journal of Natural Sciences 10, 324–328 (2005)
Crampton, J.: XACML and role-based access control, DIMACS Workshop on Security of Web Services and E-Commerce (2005)
Crampton. J.: A Reference Monitor for Workflow Systems with Constrained Task Execution. In: Proc. of the 10th ACM Symposium on Access Control Models and Technologies, pp. 38–47 (2005)
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2007 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Wang, B., Zhang, S. (2007). An Organization and Task Based Access Control Model for Workflow System. In: Chang, K.CC., et al. Advances in Web and Network Technologies, and Information Management. APWeb WAIM 2007 2007. Lecture Notes in Computer Science, vol 4537. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-72909-9_51
Download citation
DOI: https://doi.org/10.1007/978-3-540-72909-9_51
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-72908-2
Online ISBN: 978-3-540-72909-9
eBook Packages: Computer ScienceComputer Science (R0)