Deriving Process-Related RBAC Models from Process Execution Histories

Anne Baumgraß; Sigrid Schefer-Wenzl; Mark Strembeck

Deriving Process-Related RBAC Models from Process Execution Histories

Anne Baumgraß, Sigrid Schefer-Wenzl, Mark Strembeck

Publikation: Beitrag in Buch/Konferenzband › Beitrag in Konferenzband

Abstract

In a business process context, access permissions grant the rights to perform certain tasks. In particular, process-related role-based access control (RBAC) models define RBAC policies for process-aware information systems (PAIS). In addition, process-related RBAC models allow for the definition of entailment constraints on tasks, such as mutual exclusion or binding constraints, for example. This paper presents an approach to derive process-related RBAC models from process execution histories recorded by a PAIS. In particular, we
present algorithms to derive corresponding RBAC artifacts and entailment constraints from standardized XML-based log files. All algorithms presented in this paper have been implemented and were tested via process logs created with CPN Tools.

Originalsprache	Englisch
Titel des Sammelwerks	4th IEEE International Workshop on Security Aspects in Processes and Services Engineering (SAPSE), 2012 IEEE 36th International Conference on Computer Software and Applications Workshops (COMPSACW 2012)
Erscheinungsort	Izmir, Turkey
Publikationsstatus	Veröffentlicht - 1 Juni 2012

Verfügbarkeit prüfen

Katalog der Universitätsbibliothek

Zitat

@inproceedings{0dc21969af744d9d8199bab71b565714,

title = "Deriving Process-Related RBAC Models from Process Execution Histories",

abstract = "In a business process context, access permissions grant the rights to perform certain tasks. In particular, process-related role-based access control (RBAC) models define RBAC policies for process-aware information systems (PAIS). In addition, process-related RBAC models allow for the definition of entailment constraints on tasks, such as mutual exclusion or binding constraints, for example. This paper presents an approach to derive process-related RBAC models from process execution histories recorded by a PAIS. In particular, we present algorithms to derive corresponding RBAC artifacts and entailment constraints from standardized XML-based log files. All algorithms presented in this paper have been implemented and were tested via process logs created with CPN Tools.",

author = "Anne Baumgra{\ss} and Sigrid Schefer-Wenzl and Mark Strembeck",

year = "2012",

month = jun,

day = "1",

language = "English",

booktitle = "4th IEEE International Workshop on Security Aspects in Processes and Services Engineering (SAPSE), 2012 IEEE 36th International Conference on Computer Software and Applications Workshops (COMPSACW 2012)",

}

Deriving Process-Related RBAC Models from Process Execution Histories. / Baumgraß, Anne; Schefer-Wenzl, Sigrid ; Strembeck, Mark.
4th IEEE International Workshop on Security Aspects in Processes and Services Engineering (SAPSE), 2012 IEEE 36th International Conference on Computer Software and Applications Workshops (COMPSACW 2012). Izmir, Turkey, 2012.

Publikation: Beitrag in Buch/Konferenzband › Beitrag in Konferenzband

TY - GEN

T1 - Deriving Process-Related RBAC Models from Process Execution Histories

AU - Baumgraß, Anne

AU - Schefer-Wenzl, Sigrid

AU - Strembeck, Mark

PY - 2012/6/1

Y1 - 2012/6/1

N2 - In a business process context, access permissions grant the rights to perform certain tasks. In particular, process-related role-based access control (RBAC) models define RBAC policies for process-aware information systems (PAIS). In addition, process-related RBAC models allow for the definition of entailment constraints on tasks, such as mutual exclusion or binding constraints, for example. This paper presents an approach to derive process-related RBAC models from process execution histories recorded by a PAIS. In particular, we present algorithms to derive corresponding RBAC artifacts and entailment constraints from standardized XML-based log files. All algorithms presented in this paper have been implemented and were tested via process logs created with CPN Tools.

AB - In a business process context, access permissions grant the rights to perform certain tasks. In particular, process-related role-based access control (RBAC) models define RBAC policies for process-aware information systems (PAIS). In addition, process-related RBAC models allow for the definition of entailment constraints on tasks, such as mutual exclusion or binding constraints, for example. This paper presents an approach to derive process-related RBAC models from process execution histories recorded by a PAIS. In particular, we present algorithms to derive corresponding RBAC artifacts and entailment constraints from standardized XML-based log files. All algorithms presented in this paper have been implemented and were tested via process logs created with CPN Tools.

M3 - Contribution to conference proceedings

BT - 4th IEEE International Workshop on Security Aspects in Processes and Services Engineering (SAPSE), 2012 IEEE 36th International Conference on Computer Software and Applications Workshops (COMPSACW 2012)

CY - Izmir, Turkey

ER -