ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Access control mechanisms for inter-organizational workflow
Full text PdfPdf (253 KB)
Source ACM Workshop on Role Based Access Control archive
Proceedings of the sixth ACM symposium on Access control models and technologies table of contents
Chantilly, Virginia, United States
Pages: 66 - 74  
Year of Publication: 2001
ISBN:1-58113-350-2
Authors
Myong H. Kang  Naval Research Lab., Washington, DC
Joon S. Park  Naval Research Lab., Washington, DC
Judith N. Froscher  Naval Research Lab., Washington, DC
Sponsor
SIGSAC: ACM Special Interest Group on Security, Audit, and Control
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 15,   Downloads (12 Months): 160,   Citation Count: 21
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/373256.373266
What is a DOI?

ABSTRACT

As more businesses engage in globalization, inter-organizational collaborative computing grows in importance. Since we cannot expect homogeneous computing environments in participating organizations, heterogeneity and Internet-based technology are prevalent in inter-organizational collaborative computing environments. One technology that provides solutions for data sharing and work coordination at the global level is inter-organizational workflow. In this paper, we investigate the access control requirements for inter-organizational workflow. We then present access control solutions for inter-organizational workflow based on our implementation. Many of the requirements and solutions in this paper address the scalability of existing security solutions, the separation of inter-organizational workflow security from concrete organization level security enforcement, and the enforcement of fine-grained access control for inter-organizational workflow.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
"Extensible Markup Language (XML) 1.0," World-wide- Web Consortium, http://www.w3.org/TR/1998/REC-xml- 19980210.html.
 
2
Gerard J. Holzmann, The Model Checker SPIN, IEEE Transactions on Software Engineering, v.23 n.5, p.279-295, May 1997  [doi>10.1109/32.588521]
 
3
Myong H. Kang , Judith N. Froscher , Amit P. Sheth , Krys Kochut , John A. Miller, A Multilevel Secure Workflow Management System, Proceedings of the 11th International Conference on Advanced Information Systems Engineering, p.271-285, June 14-18, 1999
 
4
Myong H. Kang , Brian J. Eppinger , Judith N. Froscher, Tools to Support Secure Enterprise Computing, Proceedings of the 15th Annual Computer Security Applications Conference, p.143, December 06-10, 1999
 
5
Douglas L. Long , Julie Baker , Francis Fung, A Prototype Secure Workflow Server, Proceedings of the 15th Annual Computer Security Applications Conference, p.129, December 06-10, 1999
 
6
K. Kochut, A. Sheth, and J. Miller, "ORBWork: A CORBA- Based Fully Distributed, Scalable and Dynamic Workflow Enactment Service for METEOR," UGA-CS-TR-98-006, Technical Report, Department of Computer Science, University of Georgia, 1998.
 
7
Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996  [doi>10.1109/2.485845]
 
8
R. Simon and M. E. Zurko, "Separation of Duty in Role- Based Access Control Environments," In Proceedings of New Security Paradigms Workshop, September 1997.
 
9
D. F. Sterne, G. W. Tally, C. D. McDonell, D. L. Sherman, D. L. Sames, and P. X. Pasturel, "Scalable Access Control for Distributed Object Systems," In Proceedings of 8 th USENIX Security Symposium, Washington, DC, August 1999.
 
10
Roshan K. Thomas , Ravi S. Sandhu, Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management, Proceedings of the IFIP TC11 WG11.3 Eleventh International Conference on Database Securty XI: Status and Prospects, p.166-181, August 10-13, 1997
 
11
H.M.W. Verbeek, T. Basten, and W.M.P. van der Aalst. Diagnosing Workflow Processes using Woflan. Computing Science Report 99/02, Eindhoven University of Technology, Eindhoven, 1999.

CITED BY  21
Joon S. Park , Myong H. Kang , Judith N. Froscher, A secure workflow system for dynamic collaboration, Proceedings of the 16th international conference on Information security: Trusted information: the new decade challenge, June 11-13, 2001, Paris, France
Gustaf Neumann , Mark Strembeck, An approach to engineer and enforce context constraints in an RBAC environment, Proceedings of the eighth ACM symposium on Access control models and technologies, June 02-03, 2003, Como, Italy
Patrick C. K. Hung , Kamalakar Karlapalem, A secure workflow model, Proceedings of the Australasian information security workshop conference on ACSW frontiers 2003, p.33-41, February 01, 2003, Adelaide, Australia
Eve Cohen , Roshan K. Thomas , William Winsborough , Deborah Shands, Models for coalition-based access control (CBAC), Proceedings of the seventh ACM symposium on Access control models and technologies, June 03-04, 2002, Monterey, California, USA
Mark Strembeck , Gustaf Neumann, An integrated approach to engineer and enforce context constraints in RBAC environments, ACM Transactions on Information and System Security (TISSEC), v.7 n.3, p.392-427, August 2004
Reinhardt A. Botha , Jan H. P. Eloff, Separation of duties for access control enforcement in workflow environments, IBM Systems Journal, v.40 n.3, p.666-682, March 2001
Duen-Ren Liu , Mei-Yu Wu , Shu-Teng Lee, Role-based authorizations for workflow systems in support of task-based separation of duty, Journal of Systems and Software, v.73 n.3, p.375-387, November-December 2004
Joon S. Park , Keith P. Costello , Teresa M. Neven , Josh A. Diosomito, A composite rbac approach for large, complex organizations, Proceedings of the ninth ACM symposium on Access control models and technologies, June 02-04, 2004, Yorktown Heights, New York, USA
Shih-Chien Chou , An-Feng Liu , Chien-Jung Wu, Preventing information leakage within workflows that execute among competing organizations, Journal of Systems and Software, v.75 n.1-2, p.109-123, 15 February 2005
William Tolone , Gail-Joon Ahn , Tanusree Pai , Seng-Phil Hong, Access control in collaborative systems, ACM Computing Surveys (CSUR), v.37 n.1, p.29-41, March 2005
Vijayalakshmi Atluri , Soon Ae Chun , Pietro Mazzoleni, Chinese wall security for decentralized workflow management systems, Journal of Computer Security, v.12 n.6, p.799-840, December 2004
Shih-Chien Chou , Wei-Chuan Hsu , Wei-Kuang Lo, DPE/PAC: decentralized process engine with product access control, Journal of Systems and Software, v.76 n.3, p.207-219, June 2005
Song Wu , Kang Xiao , Li Qi, GPE4CGSP: interoperability between heterogeneous grid infrastructures, Proceedings of the 2007 Asian technology information program's (ATIP's) 3rd workshop on High performance computing in China: solution approaches to impediments for high performance computing, November 11-11, 2007, Reno, Nevada
Peng Liu , Zhong Chen, An Access Control Model for Web Services in Business Process, Proceedings of the 2004 IEEE/WIC/ACM International Conference on Web Intelligence, p.292-298, September 20-24, 2004
Vipul Goyal , Omkant Pandey , Amit Sahai , Brent Waters, Attribute-based encryption for fine-grained access control of encrypted data, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA
Tsung-Yi Chen , Yuh-Min Chen , Hui-Chuan Chu , Chin-Bin Wang, Development of an access control model, system architecture and approaches for resource sharing in virtual enterprise, Computers in Industry, v.58 n.1, p.57-73, January, 2007
Paul El Khoury , Emmanuel Coquery , Mohand-Said Hacid, Consistency checking of role assignments in inter-organizational collaboration, Proceedings of the SIGSPATIAL ACM GIS 2008 International Workshop on Security and Privacy in GIS and LBS, November 04-04, 2008, Irvine, California
Fabio Massacci , Artsiom Yautsiukhin, An algorithm for the appraisal of assurance indicators for complex business processes, Proceedings of the 2007 ACM workshop on Quality of protection, October 29-29, 2007, Alexandria, Virginia, USA
Florian Kerschbaum , Philip Robinson, Security architecture for virtual organizations of business web services, Journal of Systems Architecture: the EUROMICRO Journal, v.55 n.4, p.224-232, April, 2009
Chunhua Gu , Xueqin Zhang , Guoxin Song, A Delegation Logic Based Authorization Mechanism for Virtual Organizations, Proceeding of the 2005 conference on Applied Public Key Infrastructure: 4th International Workshop: IWAP 2005, p.123-136, May 09, 2005
Yahui Lu , Li Zhang , Jiaguang Sun, Task-activity based access control for process collaboration environments, Computers in Industry, v.60 n.6, p.403-415, August, 2009

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Access controls

Additional Classification:
  H. Information Systems
  H.5 INFORMATION INTERFACES AND PRESENTATION (I.7)
      H.5.3 Group and Organization Interfaces
          Subjects: Collaborative computing

  I. Computing Methodologies
  I.2 ARTIFICIAL INTELLIGENCE
      I.2.8 Problem Solving, Control Methods, and Search
          Subjects: Control theory

  J. Computer Applications
  J.1 ADMINISTRATIVE DATA PROCESSING
      Subjects: Business

  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS


General Terms:
Design, Management, Performance, Security, Theory


Keywords:
access control, enterprise, organizational security, security, workflow

Collaborative Colleagues:
Myong H. Kang: colleagues
Joon S. Park: colleagues
Judith N. Froscher: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player