On Evolving Organizational Models without Loosing Control on Authorization Constraints in Web Service Orchestrations

On Evolving Organizational Models without Loosing Control on Authorization Constraints in Web Service Orchestrations

Abstract

Providing adequate access control is crucial for the proper execution of any Web Service (WS) orchestration. Typically, access rules and authorization constraints are defined for a WS orchestration and are resolved over an organizational model at runtime in order to find authorized users to perform orchestration tasks. As known from many practical studies, organizational models are frequently subject to change (e.g., outsourcing or restructuring). Although the effects of organizational changes on access rules have been investigated so far, their effects on authorization constraints remain still completely unclear, albeit violating authorization constraints might lead to severe problems such as security holes. In this paper, we systematically investigate the effects of organizational changes on authorization constraints and propose different strategies to cope with possible violations. We evaluate our results along the most common types of authorization constraints and discuss the impact of the selected implementation choice.

Grafik Top
Authors
  • Rinderle-Ma, Stefanie
  • Leitner, Maria
Grafik Top
Projects
Grafik Top
Shortfacts
Category
Paper in Conference Proceedings or in Workshop Proceedings (Paper)
Event Title
12th IEEE Conference on Commerce and Enterprise Computing (CEC 2010)
Divisions
Workflow Systems and Technology
Event Location
Shanghai, China 2010
Event Type
Conference
Event Dates
2010-11-14
Date
November 2010
Official URL
http://dx.doi.org/10.1109/CEC.2010.17
Export
Grafik Top