Sciweavers

ICWS
2009
IEEE

Identity Attribute-Based Role Provisioning for Human WS-BPEL Processes

13 years 10 months ago
Identity Attribute-Based Role Provisioning for Human WS-BPEL Processes
The WS-BPEL specification focuses on business processes the activities of which are assumed to be interactions with Web services. However, WS-BPEL processes go beyond the orchestration of activities exposed as Web services. There are cases in which people must be considered as additional participants to the execution of a process. The inclusion of humans, in turn, requires solutions to support the specification and enforcement of authorizations to users for the execution of human activities while enforcing authorization constraints. In this paper, we extend RBAC-WSBPEL, a role-based authorization framework for WS-BPEL processes with an identity attribute-based role provisioning approach that preserves the privacy of the users who claim the execution of human activities. Such approach is based on the notion of identity records and role provisioning policies, and uses Pedersen commitments, aggregated zero knowledge proof of knowledge, and Oblivious CommitmentBased Envelope protocols to ...
Federica Paci, Rodolfo Ferrini, Elisa Bertino
Added 19 Feb 2011
Updated 19 Feb 2011
Type Journal
Year 2009
Where ICWS
Authors Federica Paci, Rodolfo Ferrini, Elisa Bertino
Comments (0)