Towards a Comprehensive Complexity Assessment of RBAC Models

Johannes Prescher; Sigrid Schefer-Wenzl; Anne Baumgraß; Mark Strembeck; Jan Mendling

Towards a Comprehensive Complexity Assessment of RBAC Models

Johannes Prescher, Sigrid Schefer-Wenzl, Anne Baumgraß, Mark Strembeck, Jan Mendling

Publication: Scientific journal › Journal article

Abstract

In the context of process-aware information systems, process-related RBAC models define which tasks of a business process can be performed by which subjects. Entailment constraints on tasks, such as mutual exclusion or binding constraints, are defined in such models to enforce or restrict subjects and roles to execute a particular combination of tasks. Although these constraints are an important means to assist the specification of business processes and to control the execution of workflows, they require additional checks and can make an RBAC model more difficult to understand. This paper investigates the factors that contribute to the reasoning effort required to understand a process-related RBAC model. We present a set of measures for such RBAC models. Moreover, these measures are applied to a set of different RBAC models to indicate the measures' suitability for assessing the complexity of RBAC models.

Original language	English
Pages (from-to)	12 - 23
Journal	EMISA FORUM
Volume	34
Issue number	2
Publication status	Published - 2014

Austrian Classification of Fields of Science and Technology (ÖFOS)

502
102
502050 Business informatics
202031 Network engineering

Check availability

University Library Catalogue

Cite this

@article{0dfad06e3e3a44daabbfa3e698760cf9,

title = "Towards a Comprehensive Complexity Assessment of RBAC Models",

abstract = "In the context of process-aware information systems, process-related RBAC models define which tasks of a business process can be performed by which subjects. Entailment constraints on tasks, such as mutual exclusion or binding constraints, are defined in such models to enforce or restrict subjects and roles to execute a particular combination of tasks. Although these constraints are an important means to assist the specification of business processes and to control the execution of workflows, they require additional checks and can make an RBAC model more difficult to understand. This paper investigates the factors that contribute to the reasoning effort required to understand a process-related RBAC model. We present a set of measures for such RBAC models. Moreover, these measures are applied to a set of different RBAC models to indicate the measures' suitability for assessing the complexity of RBAC models.",

author = "Johannes Prescher and Sigrid Schefer-Wenzl and Anne Baumgra{\ss} and Mark Strembeck and Jan Mendling",

year = "2014",

language = "English",

volume = "34",

pages = "12 -- 23",

journal = "EMISA FORUM",

issn = "1610-3351",

number = "2",

}

TY - JOUR

T1 - Towards a Comprehensive Complexity Assessment of RBAC Models

AU - Prescher, Johannes

AU - Schefer-Wenzl, Sigrid

AU - Baumgraß, Anne

AU - Strembeck, Mark

AU - Mendling, Jan

PY - 2014

Y1 - 2014

N2 - In the context of process-aware information systems, process-related RBAC models define which tasks of a business process can be performed by which subjects. Entailment constraints on tasks, such as mutual exclusion or binding constraints, are defined in such models to enforce or restrict subjects and roles to execute a particular combination of tasks. Although these constraints are an important means to assist the specification of business processes and to control the execution of workflows, they require additional checks and can make an RBAC model more difficult to understand. This paper investigates the factors that contribute to the reasoning effort required to understand a process-related RBAC model. We present a set of measures for such RBAC models. Moreover, these measures are applied to a set of different RBAC models to indicate the measures' suitability for assessing the complexity of RBAC models.

AB - In the context of process-aware information systems, process-related RBAC models define which tasks of a business process can be performed by which subjects. Entailment constraints on tasks, such as mutual exclusion or binding constraints, are defined in such models to enforce or restrict subjects and roles to execute a particular combination of tasks. Although these constraints are an important means to assist the specification of business processes and to control the execution of workflows, they require additional checks and can make an RBAC model more difficult to understand. This paper investigates the factors that contribute to the reasoning effort required to understand a process-related RBAC model. We present a set of measures for such RBAC models. Moreover, these measures are applied to a set of different RBAC models to indicate the measures' suitability for assessing the complexity of RBAC models.

M3 - Journal article

SN - 1610-3351

VL - 34

SP - 12

EP - 23

JO - EMISA FORUM

JF - EMISA FORUM

IS - 2

ER -