Publication Details

Mandatory Access Control in Workflow Systems

CVRČEK Daniel. Mandatory Access Control in Workflow Systems. In: Knowledge-based Software Engineering. Brno: IOS Press, 2000, pp. 247-254. ISBN 1-58603-060-4.
Czech title
Povinné řízení přístupu ve workflow systémech
Type
conference paper
Language
english
Authors
Cvrček Daniel, Ing., Ph.D. (DCSE FEECS BUT)
Keywords

access control, workflow, MAC, secrecy, integrity

Abstract

This paper analysis problems of mandatory access control in strongly distributed information systems that solve computatioonal tasks with long time durability (workflow management systems). We show that problem of mandatory access control may be solved on several levels.There is a strong difference between classification of data the system works with and classification of tasks' definitions. The latter situation is more difficult not only from the theoretical reasons but also from the administration and functional point of view. We are developing procedures for the task execution management that are based on the unified classifcation of data that are processed. This classification may be used not only for controlling the access to the resources but also for the determination of subjects that are allowed to execute parts of the workflow tasks (task-steps).

Annotation

This paper analysis problems of mandatory access control in strongly distributed information systems that solve computatioonal tasks with long time durability (workflow management systems). We show that problem of mandatory access control may be solved on several levels.There is a strong difference between classification of data the system works with and classification of tasks' definitions. The latter situation is more difficult not only from the theoretical reasons but also from the administration and functional point of view. We are developing procedures for the task execution management that are based on the unified classifcation of data that are processed. This classification may be used not only for controlling the access to the resources but also for the determination of subjects that are allowed to execute parts of the workflow tasks (task-steps).

Published
2000
Pages
247-254
Proceedings
Knowledge-based Software Engineering
Conference
Fourth Joint Conference on Knowledge-Based Software Engineering, Brno, CZ
ISBN
1-58603-060-4
Publisher
IOS Press
Place
Brno, CZ
BibTeX 
@INPROCEEDINGS{FITPUB6700,
   author = "Daniel Cvr\v{c}ek",
   title = "Mandatory Access Control in Workflow Systems",
   pages = "247--254",
   booktitle = "Knowledge-based Software Engineering",
   year = 2000,
   location = "Brno, CZ",
   publisher = "IOS Press",
   ISBN = "1-58603-060-4",
   language = "english",
   url = "https://www.fit.vut.cz/research/publication/6700"
}
Back to top