Modeling and Realizing Security-Critical Inter-Organizational Workflows

Michael Breu; Michael Hafner; Barbara Weber; Andrea Nowak

Modeling and Realizing Security-Critical Inter-Organizational Workflows

Michael Breu
, Michael Hafner
, Barbara Weber
, Andrea Nowak

Research output: Chapter in Book or Conference Proceedings › Conference Proceedings with Oral Presentation › peer-review

Abstract

In this paper we present a method for the design and realization of security-critical inter-organizational workflows. We focus on the systematic development of secure solutions based on the thorough elicitation of security requirements. Our basic view is a network of partners cooperating in a controlled way by calling services and exchanging documents. The method presented is based on two orthogonal views. In the interface view each partner is seen as a component offering a set of services with given properties and permissions. In the workflow view the orchestration of these services is defined both at a global and at a local level. Our approach is based on a reference architecture that allows the local control of workflow instances. Security requirements are realized by security components and web services implementing the business logic.

Original language	English
Title of host publication	IASSE 2004 Proc. of the 13th International Conference on Intelligent and Adaptive Systems and Software Engineering
Pages	6
Number of pages	6
Publication status	Published - 2004
Event	IASSE 2004 - Duration: 1 Jan 2004 → …

Conference

Conference	IASSE 2004
Period	1/01/04 → …

Research Field

Not defined

Keywords

inter-organizational workflows
security
object oriented modelling
UML

Cite this

@inproceedings{2decfee911ee401cba45b73cb9cfd175,

title = "Modeling and Realizing Security-Critical Inter-Organizational Workflows",

abstract = "In this paper we present a method for the design and realization of security-critical inter-organizational workflows. We focus on the systematic development of secure solutions based on the thorough elicitation of security requirements. Our basic view is a network of partners cooperating in a controlled way by calling services and exchanging documents. The method presented is based on two orthogonal views. In the interface view each partner is seen as a component offering a set of services with given properties and permissions. In the workflow view the orchestration of these services is defined both at a global and at a local level. Our approach is based on a reference architecture that allows the local control of workflow instances. Security requirements are realized by security components and web services implementing the business logic.",

keywords = "inter-organizational workflows, security, object oriented modelling, UML, inter-organizational workflows, security, object oriented modelling, UML",

author = "Michael Breu and Michael Hafner and Barbara Weber and Andrea Nowak",

year = "2004",

language = "English",

pages = "6",

booktitle = "IASSE 2004 Proc. of the 13th International Conference on Intelligent and Adaptive Systems and Software Engineering",

note = "IASSE 2004 ; Conference date: 01-01-2004",

}

Modeling and Realizing Security-Critical Inter-Organizational Workflows. / Breu, Michael; Hafner, Michael; Weber, Barbara et al.
IASSE 2004 Proc. of the 13th International Conference on Intelligent and Adaptive Systems and Software Engineering. 2004. p. 6.

Research output: Chapter in Book or Conference Proceedings › Conference Proceedings with Oral Presentation › peer-review

TY - GEN

T1 - Modeling and Realizing Security-Critical Inter-Organizational Workflows

AU - Breu, Michael

AU - Hafner, Michael

AU - Weber, Barbara

AU - Nowak, Andrea

PY - 2004

Y1 - 2004

N2 - In this paper we present a method for the design and realization of security-critical inter-organizational workflows. We focus on the systematic development of secure solutions based on the thorough elicitation of security requirements. Our basic view is a network of partners cooperating in a controlled way by calling services and exchanging documents. The method presented is based on two orthogonal views. In the interface view each partner is seen as a component offering a set of services with given properties and permissions. In the workflow view the orchestration of these services is defined both at a global and at a local level. Our approach is based on a reference architecture that allows the local control of workflow instances. Security requirements are realized by security components and web services implementing the business logic.

AB - In this paper we present a method for the design and realization of security-critical inter-organizational workflows. We focus on the systematic development of secure solutions based on the thorough elicitation of security requirements. Our basic view is a network of partners cooperating in a controlled way by calling services and exchanging documents. The method presented is based on two orthogonal views. In the interface view each partner is seen as a component offering a set of services with given properties and permissions. In the workflow view the orchestration of these services is defined both at a global and at a local level. Our approach is based on a reference architecture that allows the local control of workflow instances. Security requirements are realized by security components and web services implementing the business logic.

KW - inter-organizational workflows

KW - security

KW - object oriented modelling

KW - UML

KW - inter-organizational workflows

KW - security

KW - object oriented modelling

KW - UML

M3 - Conference Proceedings with Oral Presentation

SP - 6

BT - IASSE 2004 Proc. of the 13th International Conference on Intelligent and Adaptive Systems and Software Engineering

T2 - IASSE 2004

Y2 - 1 January 2004

ER -

Modeling and Realizing Security-Critical Inter-Organizational Workflows

Abstract

Conference

Research Field

Keywords

Fingerprint

Cite this