Workflow-based dynamic access control in a service-oriented architecture

Gwan-Hwan Hwang, Chi Wu-Lee, Zhong Xiang Jiang

Research output: Chapter in Book/Report/Conference proceedingConference contribution

4 Citations (Scopus)

Abstract

In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.

Original languageEnglish
Title of host publicationProceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012
Pages47-52
Number of pages6
DOIs
Publication statusPublished - 2012 May 14
Event26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012 - Fukuoka, Japan
Duration: 2012 Mar 262012 Mar 29

Other

Other26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012
CountryJapan
CityFukuoka
Period12/3/2612/3/29

Fingerprint

Service oriented architecture (SOA)
Access control
Markup languages
Explosions
Industry

Keywords

  • Access Control Model
  • BPEL
  • SOA
  • Web Services
  • Workflow

ASJC Scopus subject areas

  • Computer Science Applications
  • Information Systems

Cite this

Hwang, G-H., Wu-Lee, C., & Jiang, Z. X. (2012). Workflow-based dynamic access control in a service-oriented architecture. In Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012 (pp. 47-52). [6185098] https://doi.org/10.1109/WAINA.2012.65

Workflow-based dynamic access control in a service-oriented architecture. / Hwang, Gwan-Hwan; Wu-Lee, Chi; Jiang, Zhong Xiang.

Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012. 2012. p. 47-52 6185098.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Hwang, G-H, Wu-Lee, C & Jiang, ZX 2012, Workflow-based dynamic access control in a service-oriented architecture. in Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012., 6185098, pp. 47-52, 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012, Fukuoka, Japan, 12/3/26. https://doi.org/10.1109/WAINA.2012.65
Hwang G-H, Wu-Lee C, Jiang ZX. Workflow-based dynamic access control in a service-oriented architecture. In Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012. 2012. p. 47-52. 6185098 https://doi.org/10.1109/WAINA.2012.65
Hwang, Gwan-Hwan ; Wu-Lee, Chi ; Jiang, Zhong Xiang. / Workflow-based dynamic access control in a service-oriented architecture. Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012. 2012. pp. 47-52
@inproceedings{ff2cdd72eda740fdafeed7cfd18669fb,
title = "Workflow-based dynamic access control in a service-oriented architecture",
abstract = "In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.",
keywords = "Access Control Model, BPEL, SOA, Web Services, Workflow",
author = "Gwan-Hwan Hwang and Chi Wu-Lee and Jiang, {Zhong Xiang}",
year = "2012",
month = "5",
day = "14",
doi = "10.1109/WAINA.2012.65",
language = "English",
isbn = "9780769546520",
pages = "47--52",
booktitle = "Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012",

}

TY - GEN

T1 - Workflow-based dynamic access control in a service-oriented architecture

AU - Hwang, Gwan-Hwan

AU - Wu-Lee, Chi

AU - Jiang, Zhong Xiang

PY - 2012/5/14

Y1 - 2012/5/14

N2 - In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.

AB - In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.

KW - Access Control Model

KW - BPEL

KW - SOA

KW - Web Services

KW - Workflow

UR - http://www.scopus.com/inward/record.url?scp=84860752265&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84860752265&partnerID=8YFLogxK

U2 - 10.1109/WAINA.2012.65

DO - 10.1109/WAINA.2012.65

M3 - Conference contribution

AN - SCOPUS:84860752265

SN - 9780769546520

SP - 47

EP - 52

BT - Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012

ER -