Modelling Workflow Executions under Role-Based Authorisation Control

He, Ligang; Duan, Kewei; Chen, Xueguang; Zou, Deqing; Han, Zhen; Fadavinia, Ali; Jarvis, Stephen A.

doi:10.1109/scc.2011.56

Cited by 5 publications

(4 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some of this research also uses Petri-nets to model authorization constraints. The work presented in this paper differs from this research in the following respects: First, the work found in the literature [26] does not differentiate human tasks and computing tasks, and does not model the interactions between workflow authorization and workflow execution. The work presented in this paper models resource competition and interactions between the authorization module and the execution module.…”

Section: Related Workmentioning

confidence: 90%

“…Research has also been conducted on the topic of security and authorization constraints in the workflow context [25,14,[26][27][28]16]. Some of this research also uses Petri-nets to model authorization constraints.…”

Section: Related Workmentioning

confidence: 99%

“…(6) should be changed to Eq. (26). In the equation, the term for enforcing the role hierarchy constraint is removed.…”

Section: Overhead By Role Duty and Hierarchy Constraintsmentioning

confidence: 99%

See 2 more Smart Citations

Modeling and analyzing the impact of authorization on workflow executions

Huang

Duan

et al. 2012

Future Generation Computer Systems

Self Cite

View full text Add to dashboard Cite

Section: Related Workmentioning

confidence: 90%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Modeling and analyzing the impact of authorization on workflow executions

Huang

Duan

et al. 2012

Future Generation Computer Systems

Self Cite

View full text Add to dashboard Cite

“…Other efforts are made to transform the SOA models into other executable models like discreteevent models (e.g. Symbolic Transition System (Ardagna, 2013), Petri Net (He, 2011) or its variants). Unfortunately, the transformed models including a lot of "places/states" and "transactions" which gives an appearance completely different from the original system architecture, hence this kind of simulation can't provide an intuitive observation of systems' behavior and interactions between services.…”

Section: Introductionmentioning

confidence: 99%

Model-Driven Design and Validation of Service Oriented Architecture Based on Devs Simulation Framework

Hu¹,

Huang²,

Wu³

et al. 2014

STSC

View full text Add to dashboard Cite

It is very important to validate functional requirements and evaluate non-functional requirements in earlier design phase of a Service Oriented Architecture (SOA) by executable modeling methodology. To make SOA executable, basically, most of the proposed approaches can be divided into two categories: formalism-based ones and modeldriven ones, which both have the advantages and limitations. In this paper, we take advantage of both formalismbased and model-driven methodologies to specify a unified model-driven design and validation approach to SOA. This approach bridges generic service design and universal simulation paradigm with formal bases and practical implementation. To achieve this goal, we first extend the DEVS modeling language (DEVSML) to support nondeterministic state transition and enhance its capability to describe complex behavior of systems. Then we provide an automated transformation process using Extended DEVSML as a model transformation intermediary to bring together Model Driven Service Engineering (MDSE) with Service oriented architecture Modeling Language (SoaML) and Modeling & Simulation (M&S) methodology based on Discrete Event System Specification (DEVS). To demonstrate the applicability of this approach, we introduce an aircraft docking process in an airport scenario as the case study.

show abstract

Developing security-aware resource management strategies for workflows

Chaudhary

Jarvis

2014

Future Generation Computer Systems

Self Cite

View full text Add to dashboard Cite

Abstract-This paper investigates the resource allocation problem for a type of workflows in pervasive computing. These workflows are abstracted from the enterprise-level applications in the business or commerce area. The activities in these workflows require not only computing resources, but also human resources. Human involvement introduces additional security concerns. When we plan/allocate resource capacities, we often assume that when a task is allocated to a resource, the resource will accept the task and start the execution once the processor becomes available. However, the security policies impose further constraints on task executions, and therefore may affect both application-and system-oriented performance. Authorization is a important aspect in security. This paper investigates the issue of allocating resources for running workflows under the role-based authorization control, which is one of the most popular authorization mechanisms. By taking into account the authorization constraints, the resource allocation strategies are developed in this paper for both human resources and computing resources. In the allocation strategy for human resources, the optimization equation is constructed subject to the constraint of the budget available to hire human resources. Then the optimization equation is solved to obtain the number of human resources allocated to each authorization role. The allocation strategy for computing resources calculates not only the number of computing resources, but also the proportion of processing capacity in each resource allocated to serve the tasks assuming each role. The simulation experiments have been conducted to verify the effectiveness of the developed allocation strategies. The experimental results show that the allocation strategy developed in this paper outperforms the traditional allocation strategies, which do not consider authorization constraints, in terms of both average response time and resource utilization.

show abstract

Modelling Workflow Executions under Role-Based Authorisation Control

Cited by 5 publications

References 24 publications

Modeling and analyzing the impact of authorization on workflow executions

Modeling and analyzing the impact of authorization on workflow executions

Model-Driven Design and Validation of Service Oriented Architecture Based on Devs Simulation Framework

Developing security-aware resource management strategies for workflows

Contact Info

Product

Resources

About