Workflow-based dynamic access control in a service-oriented architecture

Gwan-Hwan Hwang; Chi Wu-Lee; Zhong Xiang Jiang

doi:10.1109/WAINA.2012.65

Workflow-based dynamic access control in a service-oriented architecture

Gwan-Hwan Hwang, Chi Wu-Lee, Zhong Xiang Jiang

Department of Computer science & Information Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

4 Citations (Scopus)

Abstract

In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.

Original language	English
Title of host publication	Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012
Pages	47-52
Number of pages	6
DOIs	https://doi.org/10.1109/WAINA.2012.65
Publication status	Published - 2012 May 14
Event	26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012 - Fukuoka, Japan Duration: 2012 Mar 26 → 2012 Mar 29

Other

Other	26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012
Country	Japan
City	Fukuoka
Period	12/3/26 → 12/3/29

Fingerprint

Service oriented architecture (SOA)

Access control

Markup languages

Explosions

Industry

Keywords

Access Control Model
BPEL
SOA
Web Services
Workflow

ASJC Scopus subject areas

Computer Science Applications
Information Systems

Cite this

Hwang, G-H., Wu-Lee, C., & Jiang, Z. X. (2012). Workflow-based dynamic access control in a service-oriented architecture. In Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012 (pp. 47-52). [6185098] https://doi.org/10.1109/WAINA.2012.65

Workflow-based dynamic access control in a service-oriented architecture. / Hwang, Gwan-Hwan; Wu-Lee, Chi; Jiang, Zhong Xiang.

Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012. 2012. p. 47-52 6185098.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Hwang, G-H, Wu-Lee, C & Jiang, ZX 2012, Workflow-based dynamic access control in a service-oriented architecture. in Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012., 6185098, pp. 47-52, 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012, Fukuoka, Japan, 12/3/26. https://doi.org/10.1109/WAINA.2012.65

Hwang G-H, Wu-Lee C, Jiang ZX. Workflow-based dynamic access control in a service-oriented architecture. In Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012. 2012. p. 47-52. 6185098 https://doi.org/10.1109/WAINA.2012.65

Hwang, Gwan-Hwan ; Wu-Lee, Chi ; Jiang, Zhong Xiang. / Workflow-based dynamic access control in a service-oriented architecture. Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012. 2012. pp. 47-52

@inproceedings{ff2cdd72eda740fdafeed7cfd18669fb,

title = "Workflow-based dynamic access control in a service-oriented architecture",

abstract = "In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.",

keywords = "Access Control Model, BPEL, SOA, Web Services, Workflow",

author = "Gwan-Hwan Hwang and Chi Wu-Lee and Jiang, {Zhong Xiang}",

year = "2012",

month = "5",

day = "14",

doi = "10.1109/WAINA.2012.65",

language = "English",

isbn = "9780769546520",

pages = "47--52",

booktitle = "Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012",

}

TY - GEN

T1 - Workflow-based dynamic access control in a service-oriented architecture

AU - Hwang, Gwan-Hwan

AU - Wu-Lee, Chi

AU - Jiang, Zhong Xiang

PY - 2012/5/14

Y1 - 2012/5/14

N2 - In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.

AB - In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.

KW - Access Control Model

KW - BPEL

KW - SOA

KW - Web Services

KW - Workflow

UR - http://www.scopus.com/inward/record.url?scp=84860752265&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84860752265&partnerID=8YFLogxK

U2 - 10.1109/WAINA.2012.65

DO - 10.1109/WAINA.2012.65

M3 - Conference contribution

AN - SCOPUS:84860752265

SN - 9780769546520

SP - 47

EP - 52

BT - Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012

ER -

Access to Document

10.1109/WAINA.2012.65