標題: | A Delegation Framework for Task-Role Based Access Control in WFMS |
作者: | Hsu, Hwai-Jung Wang, Feng-Jian 資訊工程學系 Department of Computer Science |
關鍵字: | delegation;task-role-based access control (TRBAC);workflow management system (WfMS);separation of duty (SOD);time constraints |
公開日期: | 1-五月-2011 |
摘要: | Access control is important for protecting information integrity in workflow management system (WfMS). Compared to conventional access control technology such as discretionary, mandatory, and role-based access control models, task-role-based access control (TRBAC) model, an access control model based on both tasks and roles, meets more requirements for modern enterprise environments. However, few discussions on delegation mechanisms for TRBAC are made. In this paper, a framework considering temporal constraints to improve delegation and help automatic delegation in TRBAC is presented. In the framework, the methodology for delegations requested from both users and WfMS is discussed. The constraints for delegatee selection such as delegation loop and separation of duty (SOD) are addressed. With the framework, a sequence of algorithms for delegation and revocation of tasks are constructed gradually. Finally, a comparison is made between our approach and the representative related works. |
URI: | http://hdl.handle.net/11536/8898 |
ISSN: | 1016-2364 |
期刊: | JOURNAL OF INFORMATION SCIENCE AND ENGINEERING |
Volume: | 27 |
Issue: | 3 |
起始頁: | 1011 |
結束頁: | 1028 |
顯示於類別: | 期刊論文 |