Skip to main content
SpringerLink
Log in

Verifying BPEL Workflows Under Authorisation Constraints

  • Conference paper
Business Process Management (BPM 2006)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 4102))

Included in the following conference series:

Abstract

Business Process Execution Language (BPEL), or Web Services BPEL (WS-BPEL), is the standard for specifying workflow process definition using web services. Research on formal modelling and verification of BPEL has largely concentrated on control flow and data flow, while security related properties have received little attention. In this work, we present a formal framework that integrates Role Based Access Control (RBAC) into BPEL and allows us to express authorisation constraints using temporal logic. Using this framework, we show how model-checking can be applied to verify that a given BPEL process satisfies the security constraints.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Ahn, G., Sandhu, R., Kang, M., Park, J.: Injecting RBAC to secure a web-based workflow system. In: Proc. of RBAC 2000. ACM Press, New York (2000)

    Google Scholar 

  2. BPEL. Business process execution language for web services version 1.1, http://www-128.ibm.com/developerworks/library/ws-bpel/

  3. BPEL 2.0 Working Draft. Web services business process execution language version 2.0 (2004), http://www.oasis-open.org/apps/org/workgroup/wsbpel/

  4. Fu, X., Bultan, T., Su, J.: Analysis of interacting BPEL web services. In: Proc. of WWW 2004. ACM Press, New York (2004)

    Google Scholar 

  5. Hinz, S., Schmidt, K., Stahl, C.: Transforming BPEL to Petri Nets. In: van der Aalst, W.M.P., Benatallah, B., Casati, F., Curbera, F. (eds.) BPM 2005. LNCS, vol. 3649, pp. 220–235. Springer, Heidelberg (2005)

    Chapter  Google Scholar 

  6. Ribeiro, C., Guedes, P.: Verifying workflow processes against organization security policies. In: WETICE 1999. IEEE Computer Society Press, Los Alamitos (1999)

    Google Scholar 

  7. SAL. Symbolic analysis laboratory, http://sal.csl.sri.com/

  8. Tan, K., Crampton, J., Gunter, C.: The consistency of task-based authorization constraints in workflow systems. In: Proc. of CSFW 2004 (2004)

    Google Scholar 

  9. Wainer, J., Barthelmess, P., Kumar, A.: W-RBAC – a workflow security model incorporating controlled overriding of constraints. International Journal of Cooperative Information Systems 12(4) (2003)

    Google Scholar 

  10. Zhao, X., Cerone, A., Krishnan, P.: Modelling and resource allocation planning of BPEL workflows under security constraints. Technical Report 336, UNU-IIST (2006), http://www.iist.unu.edu/

Download references

Author information

Authors and Affiliations

  1. LMAM and Department of Informatics, School of Mathematics, Peking University, Beijing, 100871, China

    Zhao Xiangpeng

  2. UNU-IIST, Macau SAR, China

    Zhao Xiangpeng & Antonio Cerone

  3. Centre for Software Assurance, Bond University, Australia

    Padmanabhan Krishnan

Authors
  1. Zhao Xiangpeng
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Antonio Cerone
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Padmanabhan Krishnan
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Distributed Systems Group, Information Systems Institute, Vienna University of Technology, Austria

    Schahram Dustdar

  2. Department of Computer Science, University of Leicester, University Road, LE1 7RH, Leicester, UK

    José Luiz Fiadeiro

  3. Kno.e.sis Center, Dept. of Computer Science & Engineering, Wright State University, 3640 Colonel Glenn Hwy, Dayton, Ohio

    Amit P. Sheth

Rights and permissions

Reprints and permissions

Copyright information

© 2006 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Xiangpeng, Z., Cerone, A., Krishnan, P. (2006). Verifying BPEL Workflows Under Authorisation Constraints. In: Dustdar, S., Fiadeiro, J.L., Sheth, A.P. (eds) Business Process Management. BPM 2006. Lecture Notes in Computer Science, vol 4102. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11841760_36

Download citation

  • DOI: https://doi.org/10.1007/11841760_36

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-38901-9

  • Online ISBN: 978-3-540-38903-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation