We found a match
Your institution may have rights to this item. Sign in to continue.
- Title
SPECIFICATION AND VERIFICATION OF WORKFLOWS WITH RBAC MECHANISM AND SoD CONSTRAINTS.
- Authors
KONG, WEIQIANG; OGATA, KAZUHIRO; FUTATSUGI, KOKICHI
- Abstract
Security considerations, such as role-based access control (RBAC) mechanism and separation of duty (SoD) constraints, are important and integral to workflow systems. Since the definition of workflows with these security considerations is a complicated and error-prone process, rigorous verification techniques are desirable for uncovering logical errors and assuring correctness. We propose the use of an equation-based method — the OTS/CafeOBJ method to model, specify and verify workflows with such security considerations. Specifically, a workflow with the security considerations, is modeled as an OTS, a kind of transition system; the OTS is then specified in CafeOBJ, an algebraic specification language. We verify that the OTS has desired safety and liveness properties by using the CafeOBJ system as an interactive theorem prover. A case study on a sample workflow that deals with travel expense reimbursement is used to demonstrate our method.
- Subjects
WORKFLOW; COMPUTER security; SECURITY systems; COMPUTER systems; ELECTRONIC systems
- Publication
International Journal of Software Engineering & Knowledge Engineering, 2007, Vol 17, Issue 1, p3
- ISSN
0218-1940
- Publication type
Article
- DOI
10.1142/S0218194007003124