Abstract
Virtual Organisations (VOs) are collaborative environments, encompassing different autonomous partners responding to a business opportunity with a focus on automation and flexibility. These are the sort of scenarios researched specifically in the EU IST project TrustCoM. Collaborative business processes are identified as the integrating component bringing together other required VO components and subsystems such as a policy infrastructure or contract management while still meeting the requirements regarding flexibility. eBusiness in such a complex, evolving environment as the one encountered in VOs can only prosper with an integrated security model, supporting various classes of VOs or catering for VOs forming in different business segments, for instance aggregated service provisioning or collaborative engineering. Such an integrated security model has to take the integrating component, collaborative business processes into account as well. This contribution deals particularly with the security model on the VO’s enterprise layer. A business process model, offering means to controllably expose organisation internal processes is extended to interface with other security and contract management related VO subsystems (such as the policy infrastructure). The extended business process model supports process context aware security controls for and towards those subsystems within executable collaborative process instances.
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
Stefan Tai, Rania Khalaf, and Thomas Mikalsen. “Composition of Coordinated Web Services”. IBM, 2004.
Leune, Kees. “EFSOC Framework Overview and Infrastructure Services”. Infolab Technical Report, 2003.
Leune, Kees. “A Methodology for Developing Role-Based Access/Control to Web-Services”. Infolab Technical Report, 2002.
John A. Miller, Mei Fan, Amit P. Sheth and Krys J. Kochut. “Security in Web-Based Workflow Management Systems”. Technical Report #UGA-CS-LSDIS-TR-99-010, 1999.
R. K. Thomas, R. S. Sandhu. “Task-based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-oriented Authorization Management”. IFIP Workshop On Database Security, 1997.
Mendling Jan, Strembeck Mark, Stermsek Gerald, Neumann Gustaf. “An Approach to Extract RBAC Models from BPEL4WS Processes”. WETICE, 2004.
Karsten Schulz, Maria E. Orlowska. „Towards A Cross-Organisational Workflow Model“. Pro-VE, 2002.
Liu Duen-Ren, Shen Minxin. „Workflow Modeling for Virtual Processes: an Order-Preserving Process-View Approach”. Information Systems 28(6), 2003.
Dickson K.W. Chiu, Shing-Chi Cheung, Kamalakar Karlapalem, Qing Li and Sven Till. “Workflow View Driven Cross-Organizational Interoperability in a Web-Service Environment”. (ACM) Inf. Tech. and Management, 2004.
OASIS. URL: http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wss, 2005.
IBM/Microsoft/… URL: http://www-106.ibm.com/developerworks/library/specification/wstrust/, 2005.
IBM/Microsoft/… URL: http://www-128.ibm.com/developerworks/library/specification/wspolfram, 2005.
IBM/Microsoft/… URL: http://www-128.ibm.com/developerworks/library/specification/wstx/#coor, 2005.
BPMI.org. URL: http://www.bpmn.org/, 2005.
W3C. URL: http://www.w3.org/TR/2004/WD-ws-cdl-10-20040427/, 2005.
OMG. URL: http://www.uml.org/, 2005.
OASIS. URL: http://www.oasis-open.org/committees/tc_home.php?wg_abbrev=wsbpel, 2005.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 International Federation for Information Processing
About this paper
Cite this paper
Haller, J., Karabulut, Y., Robinson, P. (2005). Security Controls in Collaborative Business Processes. In: Camarinha-Matos, L.M., Afsarmanesh, H., Ortiz, A. (eds) Collaborative Networks and Their Breeding Environments. PRO-VE 2005. IFIP — The International Federation for Information Processing, vol 186. Springer, Boston, MA. https://doi.org/10.1007/0-387-29360-4_25
Download citation
DOI: https://doi.org/10.1007/0-387-29360-4_25
Publisher Name: Springer, Boston, MA
Print ISBN: 978-0-387-28259-6
Online ISBN: 978-0-387-29360-8
eBook Packages: Computer ScienceComputer Science (R0)