Conformance Checking of RBAC Policies in Process-Aware Information Systems

机译：流程感知信息系统中RBAC策略的一致性检查

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

A process-aware information system (PAIS) is a software system that supports the definition, execution, and analysis of business processes. The execution of process instances is typically recorded in so called event logs. In this paper, we present an approach to automatically generate LTL (Linear Temporal Logic) statements from process-related RBAC (Role-based Access Control) models. These LTL statements are used to check if process executions that are recorded via event logs conform to the access control policies defined via a corresponding RBAC model. To demonstrate our approach, we implemented a RBAC-to-LTL component, and used the ProM tool to test the resulting LTL statements with event logs created from process simulations in CPN tools.

机译：流程感知信息系统（PAIS）是支持业务流程的定义，执行和分析的软件系统。流程实例的执行通常记录在所谓的事件日志中。在本文中，我们提出了一种从流程相关的RBAC（基于角色的访问控制）模型自动生成LTL（线性时间逻辑）语句的方法。这些LTL语句用于检查通过事件日志记录的流程执行是否符合通过相应的RBAC模型定义的访问控制策略。为了演示我们的方法，我们实现了一个RBAC到LTL的组件，并使用ProM工具通过从CPN工具中的流程模拟创建的事件日志来测试生成的LTL语句。

著录项

来源
《International conference on business process management;BPM 2011》|2011年|p.435-446|共12页
会议地点
作者
Anne Baumgrass; Thomas Baier; Jan Mendling; Mark Strembeck;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类电子贸易、网上贸易;
关键词
process-aware information systems; conformance checking; LTL; security; role-based access control;

机译：过程感知信息系统;一致性检查;零担安全;基于角色的访问控制;

相似文献

外文文献
中文文献
专利

1. Model-driven specification and enforcement of RBAC break-glass policies for process-aware information systems [J] . Sigrid Schefer-Wenzl, Mark Strembeck Information and software technology . 2014,第10期

机译：基于模型的规范和对过程感知信息系统的RBAC防制眼镜策略的实施
2. Deploying ABAC policies using RBAC systems [J] . Batra Gunjan, Atluri Vijayalakshmi, Vaidya Jaideep, Journal of computer security . 2019,第4期

机译：使用RBAC系统部署ABAC策略
3. An RBAC Model-Based Approach to Specify the Access Policies of Web-Based Emergency Information Systems [J] . Ignacio Aedo, Paloma Díaz, Daniel Sanz The International Journal of Intelligent Control and Systems . 2006,第4期

机译：基于RBAC模型的基于Web的紧急信息系统访问策略的指定方法
4. Conformance Checking of RBAC Policy and Its Implementation [C] . Frode Hansen, Vladimir Oleshchuk International Conference on Information Security Practice and Experience(ISPEC 2005); 20050411-14; Singapore(SG) . 2005

机译：RBAC策略的一致性检查及其实现
5. Runtime Conformance Checking of Mobile Agent Systems Using Executable Models. [D] . Saifan, Ahmad A. 2010

机译：使用可执行模型的移动代理系统的运行时一致性检查。
6. Enabling the Deployment of ABAC Policies in RBAC Systems [O] . Gunjan Batra, Vijayalakshmi Atluri, Jaideep Vaidya, -1

机译：在RBAC系统中启用ABAC策略的部署
7. Conformance Checking of RBAC Policies in Process-Aware Information Systems [O] . Anne Baumgrass, Thomas Baier, Jan Mendling, 2012

机译：过程感知信息系统中RBaC策略的一致性检查
8. Checking and Measuring the Architectural Structural Conformance of Object-Oriented Systems [R] . Abi-Antoun, M. , Aldrich, J. 2007

机译：检查和测量面向对象系统的结构一致性

Conformance Checking of RBAC Policies in Process-Aware Information Systems

摘要

著录项

相似文献

相关主题

期刊订阅