@inproceedings{4280a1debf9c465c9609bcab62ad475a,
title = "Performance analysis for workflow management systems under role-based authorization control",
abstract = "Role-Based Access Control (RBAC) remains one of the most popular authorization control mechanisms. Workflow is a business flow composed of several related tasks. These tasks are interrelated and context-dependent during their execution. Under many circumstances execution context introduces uncertainty in authorization decisions for tasks. This paper investigates the role-based authorization model with the runtime context constraints and dynamic cardinality constraints. The Generalized Stochastic Petri-net is used to model the authorization process. Moreover, due to the state explosion problem in the Petri-net formalism, the proposed modeling method combines the Queuing theory to analyze both system-oriented and user-oriented performance. Given the workflow information, its running context and the authorization policies, this work can be used to predict the performance of these workflows running in the system. The prediction information can give insight in how to adjust authorization policies to strike a better balance between security and performance.",
keywords = "Authorization, Cardinality, Performance, Role, Workflow",
author = "Limin Liu and Ligang He and Jarvis, {Stephen A.}",
year = "2012",
doi = "10.1007/978-3-642-30767-6_28",
language = "English",
isbn = "9783642307669",
series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",
pages = "323--337",
booktitle = "Advances in Grid and Pervasive Computing - 7th International Conference, GPC 2012, Proceedings",
note = "7th International Conference on Advances in Grid and Pervasive Computing, GPC 2012 ; Conference date: 11-05-2012 Through 13-05-2012",
}