Types for Workflow Access Control in Web Service Context

S
SERVICES
2009
2009 Congress on Services - I
Abstract - Types for Workflow Access Control in Web Service Context

	This Article
	Subscribers, please Login Purchase article: $19 PDF RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Yahui Lu Articles by Li Zhang

2009 Congress on Services - I

Los Angeles, CA

July 06-July 10

ISBN: 978-0-7695-3708-5

	ASCII Text	x
	Yahui Lu, Li Zhang, "Types for Workflow Access Control in Web Service Context," Services, IEEE Congress on, pp. 621-628, 2009 Congress on Services - I, 2009.

	BibTex	x
	@article{ 10.1109/SERVICES-I.2009.78, author = {Yahui Lu and Li Zhang}, title = {Types for Workflow Access Control in Web Service Context}, journal ={Services, IEEE Congress on}, volume = {0}, year = {2009}, isbn = {978-0-7695-3708-5}, pages = {621-628}, doi = {http://doi.ieeecomputersociety.org/10.1109/SERVICES-I.2009.78}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Services, IEEE Congress on TI - Types for Workflow Access Control in Web Service Context SN - 978-0-7695-3708-5 SP621 EP628 A1 - Yahui Lu, A1 - Li Zhang, PY - 2009 KW - Web Service KW - Task based Access Control KW - VL - 0 JA - Services, IEEE Congress on ER -

Yahui Lu

Li Zhang

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/SERVICES-I.2009.78

Workflow provides a promising solution for organizations to achieve their business goals by interactions and collaborations between Web services. Access control is an important security mechanism to protect the resources to be only accessed by authorized users in such collaborative environments. In this paper, we aim at developing a method for formalizing and analyzing workflow access control in Web service context. To achieve this goal, we first present WSPI, Web Service Pi calculus, to formalize Web services and workflow processes. Based on WSPI, a type system is proposed to ensure that the specified TBAC policy is respected during system reductions. By subject reduction, the well-typed system can guarantee the system security and avoid access violations in run time.

Index Terms:

Web Service, Task based Access Control,

Citation:

Yahui Lu, Li Zhang, "Types for Workflow Access Control in Web Service Context," services, pp.621-628, 2009 Congress on Services - I, 2009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.