Dynamic access control through Petri net workflows

New Orleans, Louisiana December 11-December 15

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898869

16th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by K. Knorr

	ASCII Text	x
	K. Knorr, "Dynamic access control through Petri net workflows," Computer Security Applications Conference, Annual, pp. 159, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000.

	BibTex	x
	@article{ 10.1109/ACSAC.2000.898869, author = {K. Knorr}, title = {Dynamic access control through Petri net workflows}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {2000}, issn = {1063-9527}, pages = {159}, doi = {http://doi.ieeecomputersociety.org/10.1109/ACSAC.2000.898869}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Dynamic access control through Petri net workflows SN - 1063-9527 SP EP A1 - K. Knorr, PY - 2000 KW - information systems; Petri nets; authorisation; workflow management software; dynamic access control; Petri net workflows; protection mechanism; information systems; access control matrix; privileges; data misuse VL - 0 JA - Computer Security Applications Conference, Annual ER -

K. Knorr, Dept. of Inf. Technol., Zurich Univ., Switzerland

Access control is an important protection mechanism for information systems. An access control matrix grants subjects privileges to objects. Today, access control matrices are static they rarely change over time. This paper shows how to make access control matrices dynamic by means of workflows. Access rights are granted according to the state of the workflow. By this practice the risk of data misuse is decreased which is proven through an equation given in the paper. The concept of workflow is defined by Petri nets which offer a solid mathematical foundation and are well suited to represent discrete models such as workflows.

Index Terms:

information systems; Petri nets; authorisation; workflow management software; dynamic access control; Petri net workflows; protection mechanism; information systems; access control matrix; privileges; data misuse

Citation:

K. Knorr, "Dynamic access control through Petri net workflows," acsac, pp.159, 16th Annual Computer Security Applications Conference (ACSAC'00), 2000

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.