Abstract
In this paper we propose a novel access control model called workflow-based dynamic access control (WBDAC) for SOA and workflow-based systems. Besides regulating the access control according to the dynamic behavior of workflow processes, the WBDAC is based on the idea of creating transient policies dynamically so as to alleviate the role- and rule-explosion problems in RBAC and ABAC. We define a logical expression language of WBDAC called the dynamic access control language for an SOA (DACL4SOA). We have also designed an architecture to support the DACL4SOA in SOA systems based on the Business Process Execution Language and the Extensible Access Control Markup Language. The presented implementation and experimental results demonstrate the feasibility of the proposed model.
Original language | English |
---|---|
Title of host publication | Proceedings - 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012 |
Pages | 47-52 |
Number of pages | 6 |
DOIs | |
Publication status | Published - 2012 May 14 |
Event | 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012 - Fukuoka, Japan Duration: 2012 Mar 26 → 2012 Mar 29 |
Other
Other | 26th IEEE International Conference on Advanced Information Networking and Applications Workshops, WAINA 2012 |
---|---|
Country | Japan |
City | Fukuoka |
Period | 2012/03/26 → 2012/03/29 |
Keywords
- Access Control Model
- BPEL
- SOA
- Web Services
- Workflow
ASJC Scopus subject areas
- Computer Science Applications
- Information Systems