Abstract
Access control is an important protection mechanism for information system. Access control enforces subjects access restrictions to objects. Legitimate users should be allowed to access objects and illegitimate users should be detained from accessing objects. Access control between multi-user and multi-object is the key technique in security management of workflow management systems (WfMS), and the mechanism of the role-based authorization and access control is an effective way to solve the problem. This paper designs a set of practical constraint mechanism of role-based access control for WfMS. After introducing authorization constraint mechanism, a new model of role-based access control, RBACWF, is proposed. The role assignment algorithm, role-assign(tasknumber, pre_ass) , is also given as a key technique in this model. After this, an application example is given to explain the execution of the algorithm. Finally, a practical WfMS based on above designs is supplied. The practice in the system’s design and execution has proved that the authorization mechanism is flexible, the performance of the access security is improved greatly, and it also simplifies the task complexity of security administrator.
Published Version
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call