A Security Architecture for Inter-Organizational Workflows: Putting Security Standards for Web Services Together

نویسندگان

Michael Hafner

Ruth Breu

Michael Breu

چکیده

Modern eBusiness processes are spanning over a set of public authorities and private corporations. Those processes require high security principles, rooted on open standards. The SECTINO project follows the paradigm of model driven security architecture: High level business-oriented security requirements for inter-organizational workflows are translated into a configuration for a standards based target architecture. The target architecture encapsulates a set of core web services, links them via a workflow engine, and guards them by imposing specified security policies.

برای دانلود رایگان متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید

ثبت نام

اگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید

منابع مشابه

Model-Driven Security Engineering for Trust Management in SECTET

Service Oriented Architectures with underlying technologies like web services and web services orchestration have opened the door to a wide range of novel application scenarios, especially in the context of inter-organizational cooperation. One of the remaining obstacles for a widespread use of these techniques is security. Companies and organizations open their systems and core business proces...

متن کامل

Model Driven Security for Inter-organizational Workflows in e-Government

Model Driven Architecture is an approach to increase the quality of complex software systems by creating high-level system models and automatically generating system architectures and components out of these models. We show how this paradigm can be applied to what we call Model Driven Security for inter-organizational workflows in e-government. Our focus is on the realization of security-critic...

متن کامل

Agents and workflow engines for inter-organizational workflows in e-government cases

Purpose – The paper aims to propose a web-based “intermediation hybrid architecture” for a workflow management system that integrates services by exploiting and combining the advantages of strict centralized topologies that use workflow engines, with totally distributed systems which use agent technologies. Design/methodology/approach – The proposed operational and technical architectures defin...

متن کامل

Secure Document Circulation Using Web Services Technologies

This paper discusses two issues. The first is the need for model driven security for Service-Oriented Computing environments to address the lack of support for specifying the security requirements of Web Services during the earlier phases of the development process. The second issue revolves around supporting secure document circulation in inter-domain, decentralized environments, and specifica...

متن کامل

An Access Control Model for Inter- Organizational Web Services

With the emergence of Web Services-based collaborative systems, new issues arise, in particular those related to security. In this context, Web Service access control should be studied, specified and enforced. This work proposes a new access control framework for Inter-Organizational Web Services: “PolyOrBAC”. On the one hand, the authors extend OrBAC (Organization-Based Access Control Model) t...

متن کامل

ذخیره در منابع من

ذخیره در منابع من قبلا به منابع من ذحیره شده

{@ msg_add @}

با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید

عنوان ژورنال:

دوره شماره

صفحات -

تاریخ انتشار 2005

A Security Architecture for Inter-Organizational Workflows: Putting Security Standards for Web Services Together

نویسندگان

چکیده

منابع مشابه

Model-Driven Security Engineering for Trust Management in SECTET

Model Driven Security for Inter-organizational Workflows in e-Government

Agents and workflow engines for inter-organizational workflows in e-government cases

Secure Document Circulation Using Web Services Technologies

An Access Control Model for Inter- Organizational Web Services

عنوان ژورنال:

اشتراک گذاری