Deriving Process-Related RBAC Models from Process Execution Histories

In a business process context, access permissions grant the rights to perform certain tasks. In particular, process-related role-based access control (RBAC) models define RBAC policies for process-aware information systems (PAIS). In addition, process-related RBAC models allow for the definition of...

Full description

Saved in:
Bibliographic Details
Main Authors: Baumgrass, A., Schefer-Wenzl, Sigrid, Strembeck, M.
Format: Conference Proceeding
Language:English
Subjects:
Access control
Biological system modeling
Constraints
Contracts
History
PAIS
Process control
Process Execution History
RBAC
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In a business process context, access permissions grant the rights to perform certain tasks. In particular, process-related role-based access control (RBAC) models define RBAC policies for process-aware information systems (PAIS). In addition, process-related RBAC models allow for the definition of entailment constraints on tasks, such as mutual exclusion or binding constraints, for example. This paper presents an approach to derive process-related RBAC models from process execution histories recorded by a PAIS. In particular, we present algorithms to derive corresponding RBAC artifacts and entailment constraints from standardized XML-based log files. All algorithms presented in this paper have been implemented and were tested via process logs created with CPN Tools.
DOI:10.1109/COMPSACW.2012.80