Authorization and User Failure Resiliency for WS-BPEL Business Processes


We investigate the problem of WS-BPEL processes resiliency in RBAC-WS-BPEL, an authorization model for WS-BPEL that supports the specification of authorizations for the execution of WS-BPEL process activities by roles and users and authorization constraints, such as separation and binding of duty. The goal of resiliency is to guarantee that even if some users becomes unavailable during the execution of a WS-BPEL process, the remaining users can still complete the execution of the process. We extend RBAC-WS-BPEL with a new type of constraints called resiliency constraints and the notion of user failure resiliency for WS-BPEL processes and propose an algorithm to determine if a WS-BPEL process is user failure resilient.


WS-BPEL, RBAC, resiliency contraints, user failer resiliency

Date of this Version



Service-Oriented Computing – ICSOC 2008 Lecture Notes in Computer Science, 2008, Volume 5364/2008, 116-131