Architectural Alignment of Access Control Requirements Extracted from Business Processes

Pilipchuk, Roman

doi:10.5445/KSP/1000148100

Download Url(s)

https://library.oapen.org/bitstream/20.500.12657/61238/1/architectural-alignment-of-access-control-requirements-extracted-from-business-processes.pdf

Author(s)

Pilipchuk, Roman

Language

English

Show full item record

Abstract

Business processes and information systems evolve constantly and affect each other in non-trivial ways. Aligning security requirements between both is a challenging task. This work presents an automated approach to extract access control requirements from business processes with the purpose of transforming them into a) access permissions for role-based access control and b) architectural data flow constraints to identify violations of access control in enterprise application architectures.

URI

https://directory.doabooks.org/handle/20.500.12854/97732

Keywords

Software Engineering; Enterprise Architecture; Zugriffskontrolle; Geschäftsprozesse; Access Control; Business Processes

Publication date and place

2023

Series

The Karlsruhe Series on Software Design and Quality,

Classification

Maths for computer scientists

Pages

366

Rights

https://creativecommons.org/licenses/by-sa/4.0/

OAPEN harvesting collection

Except where otherwise noted, this item's license is described as open access