Optimized workflow authorization in service oriented architectures

Martin Wimmer; Martina Cezara Albutiu; Alfons Kemper

doi:10.1007/11766155_3

Optimized workflow authorization in service oriented architectures

Martin Wimmer, Martina Cezara Albutiu, Alfons Kemper

Informatics 3 - Chair of database systems

Technical University of Munich

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

5 Scopus citations

Abstract

Complex business processes are usually realized by specifying the integration and interaction of smaller modular software components. For example, hitherto monolithic enterprise resource planning systems (ERP) are decomposed into Web services which are then again orchestrated in terms of Web service workflows, bringing about higher levels of flexibility and adaptability. In general, such services constitute autonomous software components with their own dedicated security requirements. In this paper we present our approach for consolidating the access control of (Web service) workflows. The proposed security engineering method allows, first, to determine for whom workflows are executable from a privileges point of view, second, to assess compliance with the principle of least privilege, and, third, helps to reduce policy enforcement costs.

Original language	English
Title of host publication	Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings
Publisher	Springer Verlag
Pages	30-44
Number of pages	15
ISBN (Print)	3540346406, 9783540346401
DOIs	https://doi.org/10.1007/11766155_3
State	Published - 2006
Event	International Conference on Emerging Trends in Information and Communication Security, ETRICS 2006 - Freiburg, Germany Duration: 6 Jun 2006 → 9 Jun 2006

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	3995 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	International Conference on Emerging Trends in Information and Communication Security, ETRICS 2006
Country/Territory	Germany
City	Freiburg
Period	6/06/06 → 9/06/06

Access to Document

10.1007/11766155_3

Cite this

Wimmer, M., Albutiu, M. C., & Kemper, A. (2006). Optimized workflow authorization in service oriented architectures. In Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings (pp. 30-44). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3995 LNCS). Springer Verlag. https://doi.org/10.1007/11766155_3

Wimmer, Martin ; Albutiu, Martina Cezara ; Kemper, Alfons. / Optimized workflow authorization in service oriented architectures. Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings. Springer Verlag, 2006. pp. 30-44 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{86c68997f1f343408082da5d223921e2,

title = "Optimized workflow authorization in service oriented architectures",

abstract = "Complex business processes are usually realized by specifying the integration and interaction of smaller modular software components. For example, hitherto monolithic enterprise resource planning systems (ERP) are decomposed into Web services which are then again orchestrated in terms of Web service workflows, bringing about higher levels of flexibility and adaptability. In general, such services constitute autonomous software components with their own dedicated security requirements. In this paper we present our approach for consolidating the access control of (Web service) workflows. The proposed security engineering method allows, first, to determine for whom workflows are executable from a privileges point of view, second, to assess compliance with the principle of least privilege, and, third, helps to reduce policy enforcement costs.",

author = "Martin Wimmer and Albutiu, {Martina Cezara} and Alfons Kemper",

year = "2006",

doi = "10.1007/11766155_3",

language = "English",

isbn = "3540346406",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "30--44",

booktitle = "Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings",

note = "International Conference on Emerging Trends in Information and Communication Security, ETRICS 2006 ; Conference date: 06-06-2006 Through 09-06-2006",

}

Wimmer, M, Albutiu, MC & Kemper, A 2006, Optimized workflow authorization in service oriented architectures. in Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 3995 LNCS, Springer Verlag, pp. 30-44, International Conference on Emerging Trends in Information and Communication Security, ETRICS 2006, Freiburg, Germany, 6/06/06. https://doi.org/10.1007/11766155_3

Optimized workflow authorization in service oriented architectures. / Wimmer, Martin; Albutiu, Martina Cezara; Kemper, Alfons.
Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings. Springer Verlag, 2006. p. 30-44 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 3995 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Optimized workflow authorization in service oriented architectures

AU - Wimmer, Martin

AU - Albutiu, Martina Cezara

AU - Kemper, Alfons

PY - 2006

Y1 - 2006

N2 - Complex business processes are usually realized by specifying the integration and interaction of smaller modular software components. For example, hitherto monolithic enterprise resource planning systems (ERP) are decomposed into Web services which are then again orchestrated in terms of Web service workflows, bringing about higher levels of flexibility and adaptability. In general, such services constitute autonomous software components with their own dedicated security requirements. In this paper we present our approach for consolidating the access control of (Web service) workflows. The proposed security engineering method allows, first, to determine for whom workflows are executable from a privileges point of view, second, to assess compliance with the principle of least privilege, and, third, helps to reduce policy enforcement costs.

AB - Complex business processes are usually realized by specifying the integration and interaction of smaller modular software components. For example, hitherto monolithic enterprise resource planning systems (ERP) are decomposed into Web services which are then again orchestrated in terms of Web service workflows, bringing about higher levels of flexibility and adaptability. In general, such services constitute autonomous software components with their own dedicated security requirements. In this paper we present our approach for consolidating the access control of (Web service) workflows. The proposed security engineering method allows, first, to determine for whom workflows are executable from a privileges point of view, second, to assess compliance with the principle of least privilege, and, third, helps to reduce policy enforcement costs.

UR - http://www.scopus.com/inward/record.url?scp=33746614321&partnerID=8YFLogxK

U2 - 10.1007/11766155_3

DO - 10.1007/11766155_3

M3 - Conference contribution

AN - SCOPUS:33746614321

SN - 3540346406

SN - 9783540346401

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 30

EP - 44

BT - Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings

PB - Springer Verlag

T2 - International Conference on Emerging Trends in Information and Communication Security, ETRICS 2006

Y2 - 6 June 2006 through 9 June 2006

ER -

Wimmer M, Albutiu MC, Kemper A. Optimized workflow authorization in service oriented architectures. In Emerging Trends in Information and Communication Security - International Conference, ETRICS 2006, Proceedings. Springer Verlag. 2006. p. 30-44. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11766155_3

Optimized workflow authorization in service oriented architectures

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this