From ASTD Access Control Policies to WS-BPEL Processes Deployed in a SOA Environment

被引：1

作者：

Jiague, Michel Embe ^{[1
,2
]}

Frappier, Marc ^{[1
]}

Gervais, Frederic ^{[2
]}

Laleau, Regine ^{[2
]}

St-Denis, Richard ^{[1
]}

机构：

[1] Univ Sherbrooke, GRIL, Dept Informat, Sherbrooke, PQ J1K 2R1, Canada

[2] Univ Paris Est, IUT Senart Fontainebleau, LACL, Dept Informat, F-77300 Fontainebleau, France

来源：

WEB INFORMATION SYSTEMS ENGINEERING - WISE 2010 WORKSHOPS | 2011年 / 6724卷

基金：

加拿大自然科学与工程研究理事会;

关键词：

Access control policy; security rule; policy decision point; ASTD; (EBSEC)-S-3; BPEL; transformation; SOA; STATECHARTS; SESSIONS;

D O I：

10.1007/978-3-642-24396-7_11

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Controlling access to Web services of public agencies as well as private corporations primarily depends on specification and deployment of functional security rules in order to satisfy strict regulations imposed by governments, particularly in financial and health sectors. This paper focuses on one aspect of the SELKIS and (EBSEC)-S-3 projects related to security of Web-based information systems, namely the automatic transformation of security rules, instantiated from security rule patterns written in a graphical notation with a denotational semantics close to statecharts, into WS-BPEL (or BPEL for short) processes. The latter are executed by a BPEL engine integrated into a policy decision point, a component of a policy enforcement manager similar to the one proposed in the XACML standard.

引用

页码：126 / +

页数：3

共 26 条

[1] Rodin: An open toolset for modelling and reasoning in Event-B
Abrial J.-R.
Butler M.
Hallerstede S.
Hoang T.S.
Mehta F.
Voisin L.
[J]. International Journal on Software Tools for Technology Transfer, 2010, 12 (06) : 447 - 466
[2] Abrial J.-R., 2010, MODELING EVENT B
[3] AITSADOUNE I, 2010, 8 ACIS INT C SOFTW E, V296, P51
[4] [Anonymous], 2007, WEB SERVICES BUSINES
[5] Basin D, 2009, LECT NOTES COMPUT SC, V5789, P250, DOI 10.1007/978-3-642-04444-1_16
[6] Boreale M, 2008, LECT NOTES COMPUT SC, V5051, P19, DOI 10.1007/978-3-540-68863-1_3
[7] Frappier M, 2008, 24 U SHERBR DEP INF
[8] Extending statecharts with process algebra operators
Frappier, Marc
Gervais, Frederic
Laleau, Regine
Fraikin, Benoit
St-Denis, Richard
[J]. INNOVATIONS IN SYSTEMS AND SOFTWARE ENGINEERING, 2008, 4 (03) : 285 - 292
[9] STATECHARTS - A VISUAL FORMALISM FOR COMPLEX-SYSTEMS
HAREL, D
[J]. SCIENCE OF COMPUTER PROGRAMMING, 1987, 8 (03) : 231 - &
[10] Hassan W., 2010, 2 INT C ABZ SHORT PA, P16

← 1 2 3 →