Compliance Analysis of Authorization Constraints in Business Process

doi:10.7544/issn1000-1239.2017.20170397

Journal of Computer Research and Development ›› 2017, Vol. 54 ›› Issue (10): 2404-2418.doi: 10.7544/issn1000-1239.2017.20170397

Compliance Analysis of Authorization Constraints in Business Process

Bo Yang^1,2, Xia Chunhe^1,2,3

¹(Beijing Key Laboratory of Network Technology (Beihang University), Beijing 100191); ²(School of Computer Science and Engineering, Beihang University, Beijing 100191); ³(College of Computer Science and Information Technology, Guangxi Normal University, Guilin, Guangxi 510004)

Online:2017-10-01

Abstract

Abstract: A novel framework of business process compliance analysis is proposed in this paper, and the proposed framework can process 1)business process authorization and non-business process authorization; 2)delegation of task of business processes; 3)inheritance of roles; 4)separation of duty and binding of duty constraints; 5)statics constraints and dynamic constraints. Authorization graph is proposed to describe the framework, and construct and reduce methods of authorization graph are designed to maintain the graph, then compliance analysis algorithms of authorization graph are proposed. Based on the analysis results, conflict patterns are presented. A set of resolutions for each pattern are provided, and a prototype system is implemented. The framework of authorization constraint compliance analysis, independent of platform, can be widely applied to system security analyzing. The effectiveness of the proposed method is reported by a case study and experiments at the end of this paper.

Key words: business process, authorization constraints, compliance, separation of duty, binding of duty, task delegation

CLC Number:

TP391

Bo Yang, Xia Chunhe. Compliance Analysis of Authorization Constraints in Business Process[J]. Journal of Computer Research and Development, 2017, 54(10): 2404-2418.

	Articles by Authors
	Bo Yang
	Xia Chunhe

[1]	Shu Jian, Liang Changyong, Xu Jian. Trust-Based Multi-Objectives Task Assignment Model in Cloud Service System [J]. Journal of Computer Research and Development, 2018, 55(6): 1167-1179.
[2]	Mo Qi, Dai Fei, Zhu Rui, Da Jian, Lin Leilei, Li Tong, Xie Zhongwen, Zheng Ming. An Approach to Extract Public Process From Private Process for Building Business Collaboration [J]. Journal of Computer Research and Development, 2017, 54(9): 1892-1908.
[3]	Huang Yiwang,He Keqing,Feng Zaiwen,Huang Ying,Xie Fang. A Colored C-net Model Based on RGPS and Its Application [J]. Journal of Computer Research and Development, 2014, 51(9): 2030-2045.
[4]	Wang Jin, Huang Zhiqiu, Tang Jiajun, Chen Zhe, and Xiao Fangxiong. Predicate Constraint Oriented BPEL Modeling and Feasible Path Analysis [J]. Journal of Computer Research and Development, 2014, 51(4): 838-847.
[5]	Li Bin, Xie Feng, and Chen Zhong. A Business Oriented Risk Assessment Model [J]. , 2011, 48(9): 1634-642.
[6]	Zhu Jun, Guo Changguo, and Wu Quanyuan. A Runtime Monitoring Web Services Interaction Behaviors Method Based on CPN [J]. , 2011, 48(12): 2277-2289.
[7]	Cai Jiayong,5, Qing Sihan,, and Liu Wei,5. Separation of Duty in Privileged Operating Systems [J]. , 2008, 45(4): 666-676.
[8]	Zhang Jing, Wang Haiyang, and Cui Lizhen. Research on Cross-Organizational Workflow Modeling Based on Pi-Calculus [J]. , 2007, 44(7): 1243-1251.
[9]	Xu Wei, Wei Jun, and Li Jing. A Service-Oriented Workflow Access Control Model [J]. , 2005, 42(8): 1369-1375.

Compliance Analysis of Authorization Constraints in Business Process

RichHTML

PDF

Knowledge

Abstract

Cite this article

share this article

References

Related Articles 9

Recommended Articles

Metrics

Comments