| WS-BPEL业务流程与访问控制 |
| |
| 引用本文: | 梅彪,姜新文,吴恒.WS-BPEL业务流程与访问控制[J].计算机工程,2008,34(19):144-146. |
| |
| 作者姓名: | 梅彪 姜新文 吴恒 |
| |
| 作者单位: | 国防科技大学计算机学院,长沙,410073 |
| |
| 基金项目: | 信息产业部电子信息产业发展基金 |
| |
| 摘 要: | 针对面向服务的体系结构下企业应用安全需求,通过分析WS-BPEL业务流程特点,提出一种面向执行体的访问控制模型。该模型可以动态地进行权限授予与回收,并引入角色和约束机制。在此基础上,将流程活动映射到访问控制模型元素,从而在流程定义和权限管理隔离的情况下,实现WS-BPEL业务流程执行过程中的访问控制策略实施。
|
| 关 键 词: | Web服务业务流程执行语言 安全 访问控制 |
| 修稿时间: | |
WS-BPEL Business Process and Access Control |
| |
| MEI Biao,JIANG Xin-wen,WU Heng.WS-BPEL Business Process and Access Control[J].Computer Engineering,2008,34(19):144-146. |
| |
| Authors: | MEI Biao JIANG Xin-wen WU Heng |
| |
| Affiliation: | (School of Computer, National University of Defense Technology, Changsha 410073) |
| |
| Abstract: | Aiming at the security needs of enterprise application which is with the Service-Oriented Architecture(SOA), this paper analyzes the features of WS-BPEL business process, and then proposes an execution-oriented access control model, which can grant and withdraw permissions dynamically. Meanwhile, role and constraint mechanism are introduced. On the foundation of the former work, business activities are mapped to access control elements, so that the model can accomplish the work of access control for the process under the condition of separation between process definition and permission management. |
| |
| Keywords: | Web Services-Business Process Execution Language(WS-BPEL) security access control |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
|
