Skip to main content
SpringerLink
Log in

Modelling Inter-organizational Workflow Security in a Peer-to-Peer Environment

  • Conference paper
Book cover Enterprise Interoperability

  • 766 Accesses

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 169.00
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 219.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info
Hardcover Book
USD 219.99
Price excludes VAT (USA)
  • Durable hardcover edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

6 References

  1. W.M.P. van der Aalst and M. Weske, “The P2P approach to Interorganizational Workflows”, In K.R. Dittrich, A. Geppert, and M.C. Norrie (eds.): Proceedings of the 13th International Conference on Advanced Information Systems Engineering (CAiSE’01), Springer, Berlin, 2001, pp. 140–156.

    Google Scholar 

  2. M. Bernauer, G. Kramler, G. Kappel, “Comparing WSDL-based and ebXML-based Approaches for B2B Protocol Specification”, Proceedings of the 1st International Conference on Service-Oriented Computing (ICSOC), Trento, 2003.

    Google Scholar 

  3. Nadalin, C. Kaler, P. Hallam-Baker, R. Monzillo, 2004. Web Services Security: SOAP Message Security 1.0 (WS Security 2004), OASIS Standard 200401, March 2004. See http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0.pdf

    Google Scholar 

  4. Austrian Signature Act (Signaturgesetz-SigG), Art. 1 of the Act published in the Austrian Federal Law Gazette, part I, Nr. 190/1999.

    Google Scholar 

  5. Federal Act on Provisions Facilitating Electronic Communications with Public Bodies (E-Government Gesetz-E-GovG), Art. 1 of the Act published in the Austrian Federal Law Gazette, part I, Nr. 10/2004, entered into force on 1 March 2004.

    Google Scholar 

  6. Federal Act concerning the Protection of Personal Data (Datenschutzgesetz-DSG2000), published in the Austrian Federal Law Gazette, part I No. 165/1999, on 17. August 1999.

    Google Scholar 

  7. R. Breu, M. Hafner, B. Weber, A. Novak, „Model Driven Security for Inter-Organizational Workflows in E-Government“, accepted for TED Conference on e-Governemnt.

    Google Scholar 

  8. R. Breu, M. Hafner, B. Weber, “Modeling and Realizing Security-Critical Inter-Organizational Workflows”, In: W. Dosch, N. Debnath (Eds.), Proceedings IASSE 2004, ISCA, ISBN 1-880843-52-X.

    Google Scholar 

  9. M. Hafner, M. Breu, “A Security Architecture for Inter-organizational Workflows”, ICEIS 2005.

    Google Scholar 

  10. IBM, “Business Process Execution Language for Web Services JavaTM Run Time (BPWS4J)”. See: http://www.alphaworks.ibm.com/tech/bpws4j

    Google Scholar 

  11. IBM, Microsoft, BEA Systems, SAP AG, Siebel Systems, “Specification: Business Process Execution Language for Web Services Version 1.1”. See http://www-128.ibm.com/developerworks/library/ws-bpel/

    Google Scholar 

  12. J. Miller et al. (ed.), “MDA Guide Version 1.0.1”, OMG, 2003. See http://www.omg.org/docs/omg/03-06-01.pdf

    Google Scholar 

  13. OMG, “UML 2.0 Superstructure Specification”, http://www.omg.org/docs/ptc/03-08-02.pdf.

    Google Scholar 

  14. T. Gardner et al. [eds.], “Draft UML 1.4 Profile for Automated Buiseness Processes with a mapping to BPEL 1.0”, IBM, 2003. See http://www-128.ibm.com/developerworks/rational/library/content/04April/3103/3103_UMLProfileForBusinessProcesses1.1.pdf

    Google Scholar 

  15. D. Carlson, Modeling XML Applications with UML: Practical E-Business Applications, Addison Wesley, Boston, 2001.

    Google Scholar 

  16. M. Alam, M. Breu, R. Breu, “Model Driven Security for Web Services”, Proceedings of the 8th International Multi-topic Conference (INMIC 2004), IEEE, Lahore, 2004, pp 498–505.

    Chapter  Google Scholar 

  17. E. Bertino, S. Castano, E. Ferrari, “Securing XML Documents with Author X”, IEEE Internet Computing 5 (2001) 3, pp. 21–31.

    Article  Google Scholar 

  18. D. W. Chadwick “RBAC Policies in XML for X.509 Based Privilege Management”, Proceedings of the IFIP TC11 17th International Conference on Information Security: Visions and Perspectives 2002, pp. 39–54.

    Google Scholar 

  19. M. Thompson, A. Essiari, S. Mudumbai, “Certificate-based Authorization Policy in a PKI Environment”, ACM Transactions on Information and System Security 6 (2003) 4, pp. 566–588.

    Article  Google Scholar 

  20. W.M.P. van der Aalst, “Loosely Coupled Interorganizational Workflows: Modeling and Analyzing Workflows Crossing Organizational Boundaries”, Information and Management 37 (2000) 2, pp. 67–75.

    Article  Google Scholar 

  21. Z. Luo, A. Shet, K. Kochut, J. Miller, “Exception Handling in Workflow Systems”, Applied Intelligence 13 (2000) 2, pp. 125–147.

    Article  Google Scholar 

  22. P. Grefen, K. Aberer, Y. Hoffner, H. Ludwig, “CrossFlow: cross-organizational workflow management in dynamic virtual enterprises”, International Journal of Computer Systems Science & Engineering 15 (2000) 5, pp. 277–290.

    Google Scholar 

  23. F. Casati and M. Shan, “Event-based Interaction Management for Composite EServices in eFlow”, Information Systems Frontiers 4 (2002) 1, pp. 19–31.

    Article  Google Scholar 

  24. V. Atluri, W.K. Huang, “Enforcing Mandatory and Discretionary Security in Workflow Management Systems”, Proceedings of the 5th European Symposium on Research in Computer Security 1996.

    Google Scholar 

  25. E. Gudes, M. Olivier, R. van de Riet, “Modelling, Specifying and Implementing Workflow Security in Cyberspace”, Journal of Computer Security 7 (1999) 4, pp. 287–315.

    Google Scholar 

  26. W.K. Huang, V. Atluri, “SecureFlow: A secure Web-enabled Workflow Management System”, ACM Workshop on Role-Based Access Control 1999, pp. 83–94.

    Google Scholar 

  27. J. Wainer, P. Barthelmess and A. Kumar, “W-RBAC — A Workflow Security Model Incorporating Controlled Overriding of Constraints”, International Journal of Cooperative Information Systems. 12 (2003) 4, pp. 455–485.

    Article  Google Scholar 

  28. T. Lodderstedt, D. Basin, J. Doser “SecureUML: A UML-Based Modeling Language for Model-Driven Security”, J.-M. Jézéquel, H. Hussmann, S. Cook (eds.), Proceedings pp. 426–441.

    Google Scholar 

  29. BPMI, “BPML 1.0 Specification”, 2002. See: http://www.bpmi.org/_vti_bin/shtml.exe/bpml-spec.htm

    Google Scholar 

  30. OASIS, “ebXML Business Process Specification Schema Version 1.01”, 2001. See: http://www.ebxml.org/specs/ebBPSS.pdf

    Google Scholar 

  31. C. Gutiérez, E. Fernández-Medina, M. Piattini, “Web Service Security: is the Problem solved?”, Proceedings of the 2nd International Workshop on Security In Information Systems, WOSIS 2004, In conjunction with ICEIS 2004, Porto, 2004.

    Google Scholar 

  32. N. Mitra, N., “SOAP Version 1.2 Part 1: Messaging Framework”, W3C Recommendation 24 June 2003.

    Google Scholar 

  33. Eastlake, D. (ed.), et al., “XML-Signature Syntax and Processing”, W3C Recommendation 12 February 2002.

    Google Scholar 

  34. Eastlake, D. (ed.), et al., “XML Encryption Syntax and Processing”, W3C Recommendation 10 December 2002”.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. ARC Seibersdorf research GmbH, Donau-City Strasse 1, A - 1220, Vienna, Austria

    Andrea Nowak

  2. Institut für Informatik, Universität Innsbruck, Techniker Straße 21a, A - 6020, Innsbruck, Austria

    Michael Hafner, Michael Breu & Ruth Breu

Authors
  1. Andrea Nowak
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Michael Hafner
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Michael Breu
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Ruth Breu
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. ADELIOR/Groupe GFI, 12 rue Rouget de Lisle, 92442, Issy-les-Moulineaux cedex, France

    Guy Doumeingts

  2. Institut für Informatik, Technische Universität Clausthal, Julius-Albert-Str. 4, 38678, Clausthal-Zellerfeld, Germany

    Jörg Müller

  3. Laboratoire CRAN, Université Henri Poincaré Nancyl, BP 54506, Vandoeuvre-les-Nancy cedex, France

    Gérard Morel

  4. Laboratoire d’Automatique Productique, Signal et Image GRAI, University Bordeaux 1, 351 Cours de la Libération, 33405, Talence cedex, France

    Bruno Vallespir

Rights and permissions

Reprints and permissions

Copyright information

© 2007 Springer-Verlag London Limited

About this paper

Cite this paper

Nowak, A., Hafner, M., Breu, M., Breu, R. (2007). Modelling Inter-organizational Workflow Security in a Peer-to-Peer Environment. In: Doumeingts, G., Müller, J., Morel, G., Vallespir, B. (eds) Enterprise Interoperability. Springer, London. https://doi.org/10.1007/978-1-84628-714-5_47

Download citation

  • DOI: https://doi.org/10.1007/978-1-84628-714-5_47

  • Publisher Name: Springer, London

  • Print ISBN: 978-1-84628-713-8

  • Online ISBN: 978-1-84628-714-5

  • eBook Packages: EngineeringEngineering (R0)

Publish with us

Policies and ethics

Search

Navigation