ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Delegation and satisfiability in workflow systems
Full text PdfPdf (368 KB)
Source
Symposium on Access Control Models and Technologies archive
Proceedings of the 13th ACM symposium on Access control models and technologies table of contents
Estes Park, CO, USA
SESSION: Workflow systems table of contents
Pages 31-40  
Year of Publication: 2008
ISBN:978-1-60558-129-3
Authors
Jason Crampton  Royal Holloway, University of London
Hemanth Khambhammettu  Royal Holloway, University of London
Sponsors
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 12,   Downloads (12 Months): 130,   Citation Count: 2
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1377836.1377842
What is a DOI?

ABSTRACT

Supporting delegation mechanisms in workflow systems is receiving increasing interest from the research community. An important requirement of a constrained workflow is to guarantee the satisfiability of the workflow, which requires that some set of authorized users can complete a workflow. Typically, any mechanism that is used to establish the satisfiability of a workflow is based on the workflow specification and the user authorization information. The effect of a successful user delegation request is to change the user authorization information, thereby affecting the satisfiability of the workflow.

Existing work on delegation in workflows does not consider the satisfiability of the workflow. In this paper, we address the satisfiability problem of workflows, while supporting user delegation mechanisms, in the context of three different workflow execution models. We consider delegation of concrete tasks, abstract tasks and roles. We present algorithms for evaluating various delegation requests in each workflow execution model.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Atluri, V., Bertino, E., Ferrari, E., and Mazzoleni, P. Supporting delegation in secure workflow management systems. In Proceedings of 17th Annual IFIP WG 11.3 Working Conference on Data and Applications Security (2003), pp. 190--202.
2
Vijayalakshmi Atluri , Janice Warner, Supporting conditional delegation in secure workflow management systems, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden  [doi>10.1145/1063979.1063990]
3
Jason Crampton, A reference monitor for workflow systems with constrained task execution, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden  [doi>10.1145/1063979.1063986]
 
4
Crampton, J. Personal communication to Ninghui Li, November 2006.
 
5
Jason Crampton , Hemanth Khambhammettu, Delegation in role-based access control, International Journal of Information Security, v.7 n.2, p.123-136, March 2008  [doi>10.1007/s10207-007-0044-8]
6
Jason Crampton , Hemanth Khambhammettu, On delegation and workflow execution models, Proceedings of the 2008 ACM symposium on Applied computing, March 16-20, 2008, Fortaleza, Ceara, Brazil  [doi>10.1145/1363686.1364199]
 
7
Downey, R., and Fellows, M. Parameterized Complexity. Springer, 1999.
 
8
Savith Kandala , Ravi Sandhu, Secure role-based workflow models, Proceedings of the fifteenth annual working conference on Database and application security, p.45-58, July 15-18, 2001, Niagara, Ontario, Canada
 
9
Venter, K., and Olivier, M. The delegation authorization model: A model for the dynamic delegation of authorization rights in a secure workflow management system. In Proceedings of Information Security South Africa (2002). Published electronically. Available at http://icsa.cs.up.ac.za/issa/2002/proceedings/A021.pdf.
 
10
Jacques Wainer , Akhil Kumar , Paulo Barthelmess, DW-RBAC: A formal security model of delegation and revocation in workflow systems, Information Systems, v.32 n.3, p.365-384, May, 2007  [doi>10.1016/j.is.2005.11.008]
 
11
Wang, Q., and Li, N. Satisfiability and resiliency in workflow systems. In Proceedings of 12th European Symposium On Research In Computer Security (2007), vol. 1146 of LNCS, pp. 90--115.

CITED BY  2
Michael Stieghahn , Thomas Engel, Law-aware access control for international financial environments, Proceedings of the Eighth ACM International Workshop on Data Engineering for Wireless and Mobile Access, June 29-29, 2009, Providence, Rhode Island
Khaled Gaaloul , François Charoy , Andreas Schaad, Modelling task delegation for human-centric eGovernment workflows, Proceedings of the 10th Annual International Conference on Digital Government Research: Social Networks: Making Connections between Citizens, Data and Government, May 17-20, 2009

INDEX TERMS

Primary Classification:
  H. Information Systems
  H.4 INFORMATION SYSTEMS APPLICATIONS
      H.4.1 Office Automation
          Subjects: Workflow management

Additional Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS
      K.6.5 Security and Protection (D.4.6, K.4.2)


General Terms:
Security


Keywords:
delegation, satisfiability, workflow management systems

Collaborative Colleagues:
Jason Crampton: colleagues
Hemanth Khambhammettu: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player