On evolving organizational models without losing control on authorization constraints in web service orchestrations

Stefanie Rinderle-Ma; Maria Leitner

doi:10.1109/CEC.2010.17

On evolving organizational models without losing control on authorization constraints in web service orchestrations

Stefanie Rinderle-Ma, Maria Leitner

Vienna-UNI

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

6 Scopus citations

Abstract

Providing adequate access control is crucial for the proper execution of any Web Service (WS) orchestration. Typically, access rules and authorization constraints are defined for a WS orchestration and are resolved over an organizational model at runtime in order to find authorized users to perform orchestration tasks. As known from many practical studies, organizational models are frequently subject to change (e.g., outsourcing or restructuring). Although the effects of organizational changes on access rules have been investigated so far, their effects on authorization constraints remain still completely unclear, albeit violating authorization constraints might lead to severe problems such as security holes. In this paper, we systematically investigate the effects of organizational changes on authorization constraints and propose different strategies to cope with possible violations. We evaluate our results along the most common types of authorization constraints and discuss the impact of the selected implementation choice.

Original language	English
Title of host publication	Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010
Pages	128-135
Number of pages	8
DOIs	https://doi.org/10.1109/CEC.2010.17
State	Published - 2010
Externally published	Yes
Event	12th IEEE Conference on Commerce and Enterprise Computing, CEC 2010 - Shanghai, China Duration: 10 Nov 2010 → 12 Nov 2010

Publication series

Name	Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010

Conference

Conference	12th IEEE Conference on Commerce and Enterprise Computing, CEC 2010
Country/Territory	China
City	Shanghai
Period	10/11/10 → 12/11/10

Access to Document

10.1109/CEC.2010.17

Cite this

Rinderle-Ma, S., & Leitner, M. (2010). On evolving organizational models without losing control on authorization constraints in web service orchestrations. In Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010 (pp. 128-135). Article 5708402 (Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010). https://doi.org/10.1109/CEC.2010.17

Rinderle-Ma, Stefanie ; Leitner, Maria. / On evolving organizational models without losing control on authorization constraints in web service orchestrations. Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010. 2010. pp. 128-135 (Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010).

@inproceedings{98fde89729fb4043b7bd1e10980e9a42,

title = "On evolving organizational models without losing control on authorization constraints in web service orchestrations",

abstract = "Providing adequate access control is crucial for the proper execution of any Web Service (WS) orchestration. Typically, access rules and authorization constraints are defined for a WS orchestration and are resolved over an organizational model at runtime in order to find authorized users to perform orchestration tasks. As known from many practical studies, organizational models are frequently subject to change (e.g., outsourcing or restructuring). Although the effects of organizational changes on access rules have been investigated so far, their effects on authorization constraints remain still completely unclear, albeit violating authorization constraints might lead to severe problems such as security holes. In this paper, we systematically investigate the effects of organizational changes on authorization constraints and propose different strategies to cope with possible violations. We evaluate our results along the most common types of authorization constraints and discuss the impact of the selected implementation choice.",

author = "Stefanie Rinderle-Ma and Maria Leitner",

year = "2010",

doi = "10.1109/CEC.2010.17",

language = "English",

isbn = "9780769542287",

series = "Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010",

pages = "128--135",

booktitle = "Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010",

note = "12th IEEE Conference on Commerce and Enterprise Computing, CEC 2010 ; Conference date: 10-11-2010 Through 12-11-2010",

}

Rinderle-Ma, S & Leitner, M 2010, On evolving organizational models without losing control on authorization constraints in web service orchestrations. in Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010., 5708402, Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010, pp. 128-135, 12th IEEE Conference on Commerce and Enterprise Computing, CEC 2010, Shanghai, China, 10/11/10. https://doi.org/10.1109/CEC.2010.17

On evolving organizational models without losing control on authorization constraints in web service orchestrations. / Rinderle-Ma, Stefanie; Leitner, Maria.
Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010. 2010. p. 128-135 5708402 (Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - On evolving organizational models without losing control on authorization constraints in web service orchestrations

AU - Rinderle-Ma, Stefanie

AU - Leitner, Maria

PY - 2010

Y1 - 2010

N2 - Providing adequate access control is crucial for the proper execution of any Web Service (WS) orchestration. Typically, access rules and authorization constraints are defined for a WS orchestration and are resolved over an organizational model at runtime in order to find authorized users to perform orchestration tasks. As known from many practical studies, organizational models are frequently subject to change (e.g., outsourcing or restructuring). Although the effects of organizational changes on access rules have been investigated so far, their effects on authorization constraints remain still completely unclear, albeit violating authorization constraints might lead to severe problems such as security holes. In this paper, we systematically investigate the effects of organizational changes on authorization constraints and propose different strategies to cope with possible violations. We evaluate our results along the most common types of authorization constraints and discuss the impact of the selected implementation choice.

AB - Providing adequate access control is crucial for the proper execution of any Web Service (WS) orchestration. Typically, access rules and authorization constraints are defined for a WS orchestration and are resolved over an organizational model at runtime in order to find authorized users to perform orchestration tasks. As known from many practical studies, organizational models are frequently subject to change (e.g., outsourcing or restructuring). Although the effects of organizational changes on access rules have been investigated so far, their effects on authorization constraints remain still completely unclear, albeit violating authorization constraints might lead to severe problems such as security holes. In this paper, we systematically investigate the effects of organizational changes on authorization constraints and propose different strategies to cope with possible violations. We evaluate our results along the most common types of authorization constraints and discuss the impact of the selected implementation choice.

UR - http://www.scopus.com/inward/record.url?scp=79952372864&partnerID=8YFLogxK

U2 - 10.1109/CEC.2010.17

DO - 10.1109/CEC.2010.17

M3 - Conference contribution

AN - SCOPUS:79952372864

SN - 9780769542287

T3 - Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010

SP - 128

EP - 135

BT - Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010

T2 - 12th IEEE Conference on Commerce and Enterprise Computing, CEC 2010

Y2 - 10 November 2010 through 12 November 2010

ER -

Rinderle-Ma S, Leitner M. On evolving organizational models without losing control on authorization constraints in web service orchestrations. In Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010. 2010. p. 128-135. 5708402. (Proceedings - 12th IEEE International Conference on Commerce and Enterprise Computing, CEC 2010). doi: 10.1109/CEC.2010.17

On evolving organizational models without losing control on authorization constraints in web service orchestrations

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this