TY - JOUR
T1 - W-RBAC - A workflow security model incorporating controlled overriding of constraints
AU - Wainer, Jacques
AU - Barthelmess, Paulo
AU - Kumar, Akhil
PY - 2003/12
Y1 - 2003/12
N2 - This paper presents a pair of role-based access control models for workflow systems, collectively known as the W-RBAC models. The first of these models, W0-RBAC is based on a framework that couples a powerful RBAC-based permission service and a workflow component with clear separation of concerns for ease of administration of authorizations. The permission service is the focus of the work, providing an expressive logic-based language for the selection of users authorized to perform workflow tasks, with preference ranking. W1-RBAC extends the basic model by incorporating exception handling capabilities through controlled and systematic overriding of constraints.
AB - This paper presents a pair of role-based access control models for workflow systems, collectively known as the W-RBAC models. The first of these models, W0-RBAC is based on a framework that couples a powerful RBAC-based permission service and a workflow component with clear separation of concerns for ease of administration of authorizations. The permission service is the focus of the work, providing an expressive logic-based language for the selection of users authorized to perform workflow tasks, with preference ranking. W1-RBAC extends the basic model by incorporating exception handling capabilities through controlled and systematic overriding of constraints.
UR - http://www.scopus.com/inward/record.url?scp=0348209180&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=0348209180&partnerID=8YFLogxK
U2 - 10.1142/S0218843003000814
DO - 10.1142/S0218843003000814
M3 - Article
AN - SCOPUS:0348209180
SN - 0218-8430
VL - 12
SP - 455
EP - 485
JO - International Journal of Cooperative Information Systems
JF - International Journal of Cooperative Information Systems
IS - 4
ER -