architectural-alignment-of-access-control-requirements-extracted-from-business-processes.pdf

architectural-alignment-of-access-control-requirements-extracted-from-business-processes.pdf

Business processes and information systems evolve constantly and affect each other in non-trivial ways. Aligning security requirements between both is a challenging task. This work presents an automated approach to extract access control requirements from business processes with the purpose of trans...

Πλήρης περιγραφή

Λεπτομέρειες βιβλιογραφικής εγγραφής
Γλώσσα:English
Έκδοση: KIT Scientific Publishing 2023
Διαθέσιμο Online:https://doi.org/10.5445/KSP/1000148100
Περιγραφή
Περίληψη:Business processes and information systems evolve constantly and affect each other in non-trivial ways. Aligning security requirements between both is a challenging task. This work presents an automated approach to extract access control requirements from business processes with the purpose of transforming them into a) access permissions for role-based access control and b) architectural data flow constraints to identify violations of access control in enterprise application architectures.

Παρόμοια τεκμήρια