Architectural Alignment of Access Control Requirements Extracted from Business Processes

Thumbnail
Author(s)
Pilipchuk, Roman
Language
English
Show full item record
Abstract
Business processes and information systems evolve constantly and affect each other in non-trivial ways. Aligning security requirements between both is a challenging task. This work presents an automated approach to extract access control requirements from business processes with the purpose of transforming them into a) access permissions for role-based access control and b) architectural data flow constraints to identify violations of access control in enterprise application architectures.
URI
https://library.oapen.org/handle/20.500.12657/61238
Keywords
Software Engineering; Enterprise Architecture; Zugriffskontrolle; Geschäftsprozesse; Access Control; Business Processes
DOI
10.5445/KSP/1000148100
ISBN
9783731512127
Publisher
KIT Scientific Publishing
Publisher website
https://www.ksp.kit.edu/index.php?link=shop&sort=all
Publication date and place
2023
Series
The Karlsruhe Series on Software Design and Quality, 37
Classification
Maths for computer scientists
Pages
366
Rights
https://creativecommons.org/licenses/by-sa/4.0/