Optimized Workflow Authorization in Service Oriented Architectures

机译：面向服务的体系结构中优化的工作流授权

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Complex business processes are usually realized by specifying the integration and interaction of smaller modular software components. For example, hitherto monolithic enterprise resource planning systems (ERP) are decomposed into Web services which are then again orchestrated in terms of Web service workflows, bringing about higher levels of flexibility and adaptability. In general, such services constitute autonomous software components with their own dedicated security requirements. In this paper we present our approach for consolidating the access control of (Web service) workflows. The proposed security engineering method allows, first, to determine for whom workflows are executable from a privileges point of view, second, to assess compliance with the principle of least privilege, and, third, helps to reduce policy enforcement costs.

机译：通常通过指定较小的模块化软件组件的集成和交互来实现复杂的业务流程。例如，迄今为止的整体式企业资源计划系统（ERP）被分解为Web服务，然后根据Web服务工作流程再次进行了编排，从而带来了更高级别的灵活性和适应性。通常，此类服务构成具有自己专用安全要求的自治软件组件。在本文中，我们介绍了用于巩固（Web服务）工作流访问控制的方法。提出的安全工程方法首先允许从特权的角度确定谁可以执行工作流，其次可以评估对最低特权原则的遵守情况，其次可以帮助减少策略执行成本。

著录项

来源
《International Conference on Emerging Trends in Information and Communication Security(ETRICS 2006); 20060606-09; Freiburg(DE)》|2006年|P.30-44|共15页
会议地点 Freiburg(DE)
作者
Martin Wimmer; Martina-Cezara Albutiu; Alfons Kemper;
展开▼
作者单位

Technische Universitaet Muenchen, 85748 Garching b. Muenchen, Germany;

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类信息处理（信息加工）;通信;
关键词

相似文献

外文文献
中文文献
专利

1. A declarative two-level framework to specify and verify workflow and authorization policies in service-oriented architectures [J] . Michele Barletta, Silvio Ranise, Luca Viganò Service Oriented Computing and Applications . 2011,第2期

机译：一个声明性的两级框架，用于指定和验证面向服务的体系结构中的工作流和授权策略
2. A Service-Oriented Architecture enabling dynamic service grouping for optimizing distributed workflow execution [J] . Tristan Glatard, Johan Montagnat, David Emsellem, Future generation computer systems . 2008,第7期

机译：面向服务的体系结构可实现动态服务分组，以优化分布式工作流执行
3. Adaptation of Web Services to the Context Based on Workflow: Approach for Self-Adaptation of Service-Oriented Architectures to the Context [J] . Faical Felhi, Jalel Akaichi International Journal of Web & Semantic Technology . 2012,第4期

机译：基于工作流的Web服务适应上下文：面向服务的体系结构自适应适应上下文的方法
4. Optimized Workflow Authorization in Service Oriented Architectures [C] . Martin Wimmer, Martina-Cezara Albutiu, Alfons Kemper International Conference on Emerging Trends in Information and Communication Security . 2006

机译：优化的工作流程授权在面向服务的体系结构中
5. A service-oriented architecture for authentication and authorization. [D] . Hamedtoolloei, Hamidreza. 2009

机译：用于认证和授权的面向服务的体系结构。
6. The HL7-OMG Healthcare Services Specification Project: Motivation Methodology and Deliverables for Enabling a Semantically Interoperable Service-oriented Architecture for Healthcare [O] . Kensaku Kawamoto, Alan Honey, Ken Rubin 2009

机译：HL7-OMG医疗保健服务规范项目：动机方法论和可交付成果以实现语义可互操作的面向服务的医疗保健体系结构
7. Verifying the Interplay of Authorization Policies and Workflow in Service-Oriented Architectures (Full version) [O] . Barletta, Michele, Ranise, Silvio, Viganò, Luca 2009

机译：验证授权策略和工作流的相互作用面向服务的体系结构（完整版）

Optimized Workflow Authorization in Service Oriented Architectures

摘要

著录项

相似文献

相关主题

期刊订阅