On the Impact of Concurrency for the Enforcement of Entailment Constraints in Process-driven SOAs

Thomas Quirchmayr, Mark Strembeck

2013

Abstract

Entailment constraints, such as mutual exclusion or binding constraints, are an important means to specify and enforce business processes. However, the inherent concurrency of a distributed system may lead to omission. Such failures impact the enforcement of entailment constraints in a process-driven SOA. In particular, the impact of these failures as well as the corresponding countermeasures depend on the architecture of the respective process engine. In this paper, we discuss the impact of omission failures on the enforcement of entailment constraints in process-driven SOAs. In this context, we especially consider if the respective process engine acts as an orchestration engine or as a choreography engine.

References

  1. S. Ayed, N. Cuppens-Boulahia, and F. Cuppens. Deploying security policy in intra and inter workflow management systems. 2012 Seventh International Conference on Availability, Reliability and Security, 0:58-65, 2009.
  2. A. Barker, C. D. Walton, and D. Robertson. Choreographing web services. IEEE Transactions on Services Computing, 2(2):152-166, 2009.
  3. E. Bertino, E. Ferrari, and V. Atluri. The specification and enforcement of authorization constraints in workflow management systems. ACM Transactions on Information and System Security, 2(1):65-104, Feb. 1999.
  4. F. Casati, S. Castano, and M. Fugini. Managing workflow authorization constraints through active database technology. Information Systems Frontiers, 3(3):319-338, Sep 2001.
  5. G. Coulouris, J. Dollimore, T. Kindberg, and G. Blair. Distributed Systems: Concepts and Design (5th Edition). Addison Wesley, May 2011.
  6. C. Hentrich and U. Zdun. Process-Driven SOA: Patterns for Aligning Business and IT. CRC Press, Taylor and Francis, 2012.
  7. M. N. Huhns and M. P. Singh. Service-oriented computing: Key concepts and principles. IEEE Internet Computing, 9(1):75-81, Jan. 2005.
  8. W. Hummer, P. Gaubatz, M. Strembeck, U. Zdun, and S. Dustdar. An integrated approach for identity and access management in a SOA context. In Proceedings of the 16th ACM Symposium on Access Control Models and Technologies, SACMAT 7811, USA, 2011.
  9. L. Lamport. Time, clocks, and the ordering of events in a distributed system. Communication of ACM, 21(7):558-565, July 1978.
  10. N. Milanovic and M. Malek. Current solutions for web service composition. IEEE Internet Computing, 8(6):51-59, Nov. 2004.
  11. C. Peltz. Web services orchestration and choreography. IEEE Computer, 36(10), 2003.
  12. M. Strembeck and J. Mendling. Generic algorithms for consistency checking of mutualexclusion and binding constraints in a business process context. In Proceedings of the 18th International Conference on Cooperative Information Systems (CoopIS), volume 6426 of Lecture Notes in Computer Science (LNCS), pages 204-221, 2010.
  13. M. Strembeck and J. Mendling. Modeling process-related RBAC models with extended UML activity models. Information & Software Technology, 53(5):456-483, 2011.
  14. K. Tan, J. Crampton, and C. A. Gunter. The consistency of task-based authorization constraints in workflow systems. In Proceedings of the 17th IEEE Workshop on Computer Security Foundations, CSFW 7804, pages 155-170, USA, 2004.
  15. J. Wainer, P. Barthelmess, and A. Kumar. W-RBAC - a workflow security model incorporating controlled overriding of constraints. International Journal of Cooperative Information Systems, 12:2003, 2003.
  16. M. Xu, D. Wijesekera, X. Zhang, and D. Cooray. Towards session-aware RBAC administration and enforcement with XACML. In Proceedings of the 10th IEEE International Conference on Policies for Distributed Systems and Networks, POLICY'09, USA, 2009.
Download


Paper Citation


in Harvard Style

Quirchmayr T. and Strembeck M. (2013). On the Impact of Concurrency for the Enforcement of Entailment Constraints in Process-driven SOAs . In Proceedings of the 10th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2013) ISBN 978-989-8565-64-8, pages 34-43. DOI: 10.5220/0004601600340043


in Bibtex Style

@conference{wosis13,
author={Thomas Quirchmayr and Mark Strembeck},
title={On the Impact of Concurrency for the Enforcement of Entailment Constraints in Process-driven SOAs},
booktitle={Proceedings of the 10th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2013)},
year={2013},
pages={34-43},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004601600340043},
isbn={978-989-8565-64-8},
}


in EndNote Style

TY - CONF
JO - Proceedings of the 10th International Workshop on Security in Information Systems - Volume 1: WOSIS, (ICEIS 2013)
TI - On the Impact of Concurrency for the Enforcement of Entailment Constraints in Process-driven SOAs
SN - 978-989-8565-64-8
AU - Quirchmayr T.
AU - Strembeck M.
PY - 2013
SP - 34
EP - 43
DO - 10.5220/0004601600340043