论文部分内容阅读
The specification of authorization policies in access control models proposed so far cannot satisfy the requirements in workflow management systems(WFMSs).Furthermore,existing approaches have not provided effective conflict detection and resolution methods to maintain the consistency of authorization polices in WFMSs.To address these concerns,we propose the definition of authorization policies in which context constraints are considered and the complicated requirements in WFMSs can be satisfied.Based on the definition,we put forward static and dynamic conflict detection methods for authorization policies.By defining two new concepts,the precedence establishment rule and the conflict resolution policy,we provide a flexible approach to resolving conflicts.
The specification of authorization policies in access control models proposed so far can satisfy the requirements in workflow management systems (WFMSs). Future and existing approaches have not provided effective conflict detection and resolution methods to maintain the consistency of authorization polices in WFMS. To address these concerns, we propose the definition of authorization policies in which context con- structs are considered and the complicated requirements in WFMSs can be satisfied.Based on the definition, we put forward static and dynamic conflict detection methods for authorization policies. By defining two new concepts, the precedence establishment rule and the conflict resolution policy, we provide a flexible approach to resolving conflicts.