| 基于TBAC的BPEL访问控制技术研究 |
| |
| 引用本文: | 刘晓玲,汤庸,冀高峰,易盛.基于TBAC的BPEL访问控制技术研究[J].计算机科学,2007,34(2):132-136. |
| |
| 作者姓名: | 刘晓玲 汤庸 冀高峰 易盛 |
| |
| 作者单位: | 中山大学计算机科学系,广州,510275 |
| |
| 基金项目: | 国家自然科学基金
,
广东省自然科学基金
,
教育部跨世纪优秀人才培养计划 |
| |
| 摘 要: | 业务流程执行语言(Business Process Execution Language for Web Services)是一种可以定义抽象的和可执行的业务流程的语言。然而,BPEL缺乏访问控制方面的安全性考虑。本文主要关注基于BPEL的流程的访问控制的实现方法。我们对现有的基于任务的访问控制模型(Task-Based Access Control)进行扩展,修改了授权结构体的定义并重新定义了授权结构体的类型,并实现了从BPEL定义的流程到TBAC模型的映射,提出了一种TBAC应用到BPEL中的方法。本文最后讨论了下一步的研究工作。
|
| 关 键 词: | 业务流程执行语言 基于任务的访问控制 访问控制 |
The Research on TBAC-based Access Control of BPEL |
| |
| LIU Xiao-Ling,TANG Yong,JI Gao-Feng,YI Sheng.The Research on TBAC-based Access Control of BPEL[J].Computer Science,2007,34(2):132-136. |
| |
| Authors: | LIU Xiao-Ling TANG Yong JI Gao-Feng YI Sheng |
| |
| Affiliation: | Department of Computer Science, Zhongshan University, Guangzhou 510275 |
| |
| Abstract: | Business Process Execution Language for Web Services is a language,which can be used to define abstract and executable processes.However,the security aspect of access control is explicitly mentioned to be outside the scope of BPEL.This paper focuses on the implement of access control in the BPEL-based processes.We extend the existing Task-Based Access Control model,modify the definition of authorization unit and redefine the types of authorization units.Moreover we implement the mapping from the process defined by BPEL to TBAC model,put forwards an approach of using TBAC in BPEL.The future work is mentioned at the end of the paper. |
| |
| Keywords: | BPEL TBAC Access control |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
|
点击此处可从《计算机科学》下载全文 |
|
