Task Delegation Based Access Control Models for Workflow Systems

Khaled Gaaloul 1, 2 François Charoy 1
1 ECOO - Environment for cooperation
INRIA Lorraine, LORIA - Laboratoire Lorrain de Recherche en Informatique et ses Applications
Abstract : e-Government organisations are facilitated and conducted using workflow management systems. Role-based access control (RBAC) is recognised as an efficient access control model for large organisations. The application of RBAC in workflow systems cannot, however, grant permissions to users dynamically while business processes are being executed. We currently observe a move away from predefined strict workflow modelling towards approaches supporting flexibility on the organisational level. One specific approach is that of task delegation. Task delegation is a mechanism that supports organisational flexibility, and ensures delegation of authority in access control systems. In this paper, we propose a Task-oriented Access Control (TAC) model based on RBAC to address these requirements. We aim to reason about task from organisational perspectives and resources perspectives to analyse and specify authorisation constraints. Moreover, we present a fine grained access control protocol to support delegation based on the TAC model.
Type de document :
Communication dans un congrès
The 9th IFIP Conference on e-Business, e-Services, and e-Society, I3E 2009, Sep 2009, Nancy, France. 2009
Liste complète des métadonnées

Littérature citée [18 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/inria-00431498
Contributeur : Khaled Gaaloul <>
Soumis le : samedi 14 novembre 2009 - 00:22:55
Dernière modification le : jeudi 11 janvier 2018 - 06:19:48
Document(s) archivé(s) le : jeudi 23 septembre 2010 - 10:26:12

Fichier

gaaloul_i3e.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : inria-00431498, version 2

Collections

Citation

Khaled Gaaloul, François Charoy. Task Delegation Based Access Control Models for Workflow Systems. The 9th IFIP Conference on e-Business, e-Services, and e-Society, I3E 2009, Sep 2009, Nancy, France. 2009. 〈inria-00431498v2〉

Partager

Métriques

Consultations de la notice

240

Téléchargements de fichiers

588