Context-sensitive Constraints for Access Control of Business Processes

Gordana Milosavljević; Goran Sladić; Branko Milosavljević; Miroslav Zarić; Stevan Gostojić; Jelena Slivka

Geodesic

Parcourir par

Context-sensitive Constraints for Access Control of Business Processes

Gordana Milosavljević ; Goran Sladić ; Branko Milosavljević ; Miroslav Zarić ; Stevan Gostojić ; Jelena Slivka

Computer Science and Information Systems, Tome 15 (2018) no. 1.

Voir la notice de l'article provenant de la source Computer Science and Information Systems website

Résumé

Workflow management systems (WfMS) are used to automate and facilitate business processes of an enterprise. To simplify the administration, it is a common practice in many WfMS solutions to allocate a role to perform each activity of the process and then assign one or more users to each role. Typically, access control for WfMS is role-based with a support of constraints on users and roles. However, merely using role and constraints concepts can hardly satisfy modern access control requirements of a contemporary enterprise. Permissions should not solely depend on common static and dynamic principles, but they must be influenced by the context in which the access is requested. In this paper, we focus on the definition and enforcement of the context-sensitive constraints for workflow systems. We extended the common role-based constraints listed in literature with context-sensitive information and workflow specific components. Also, we propose a mechanism for enforcing such constraints within WfMS.

Keywords: constraints, separation of duty, access control, context-sensetive, business process

@article{CSIS_2018_15_1_a1,
     author = {Gordana Milosavljevi\'c and Goran Sladi\'c and Branko Milosavljevi\'c and Miroslav Zari\'c and Stevan Gostoji\'c and Jelena Slivka},
     title = {Context-sensitive {Constraints} for {Access} {Control} of {Business} {Processes}},
     journal = {Computer Science and Information Systems},
     publisher = {mathdoc},
     volume = {15},
     number = {1},
     year = {2018},
     url = {http://geodesic.mathdoc.fr/item/CSIS_2018_15_1_a1/}
}

TY  - JOUR
AU  - Gordana Milosavljević
AU  - Goran Sladić
AU  - Branko Milosavljević
AU  - Miroslav Zarić
AU  - Stevan Gostojić
AU  - Jelena Slivka
TI  - Context-sensitive Constraints for Access Control of Business Processes
JO  - Computer Science and Information Systems
PY  - 2018
VL  - 15
IS  - 1
PB  - mathdoc
UR  - http://geodesic.mathdoc.fr/item/CSIS_2018_15_1_a1/
ID  - CSIS_2018_15_1_a1
ER  -

%0 Journal Article
%A Gordana Milosavljević
%A Goran Sladić
%A Branko Milosavljević
%A Miroslav Zarić
%A Stevan Gostojić
%A Jelena Slivka
%T Context-sensitive Constraints for Access Control of Business Processes
%J Computer Science and Information Systems
%D 2018
%V 15
%N 1
%I mathdoc
%U http://geodesic.mathdoc.fr/item/CSIS_2018_15_1_a1/
%F CSIS_2018_15_1_a1

Gordana Milosavljević; Goran Sladić; Branko Milosavljević; Miroslav Zarić; Stevan Gostojić; Jelena Slivka. Context-sensitive Constraints for Access Control of Business Processes. Computer Science and Information Systems, Tome 15 (2018) no. 1. http://geodesic.mathdoc.fr/item/CSIS_2018_15_1_a1/