Access Control and Authorization Constraints for WS-BPEL
Abstract
Computerized workflow systems have attracted considerable research interest in the last fifteen years. More recently, there have been several XML-based languages proposed for specifying and orchestrating business processes, culminating in WS-BPEL. A significant omission from WSBPEL is the ability to specify authorization information associating users with activities in the business process and authorization constraints on the execution of activities such as separation of duty. In this paper, we address these deficiencies by developing the RBAC-WS-BPEL and BPCL languages. The first of these provides for the specification of authorization information associated with a business process specified in WS-BPEL, while BPCL provides for the articulation of authorization constraints.
Keywords
workflow systems, XML, WS-BPEL, authorization, security
Date of this Version
9-2006
Comments
IEEE International Conference on Web Services (ICWS'06), Chicago, Illinois, USA September 18-September 22