Model Driven Security for Inter-organizational Workflows in e-Government
نویسندگان
چکیده
Model Driven Architecture is an approach to increase the quality of complex software systems by creating high-level system models and automatically generating system architectures and components out of these models. We show how this paradigm can be applied to what we call Model Driven Security for inter-organizational workflows in e-government. Our focus is on the realization of security-critical inter-organizational workflows in the context of web services and web service orchestration. Security requirements are specified at an abstract level using UML diagrams. Out of this specification security relevant artifacts are created for the target reference architecture based on upcoming web service security standards.
منابع مشابه
A Security Architecture for Inter-Organizational Workflows: Putting Security Standards for Web Services Together
Modern eBusiness processes are spanning over a set of public authorities and private corporations. Those processes require high security principles, rooted on open standards. The SECTINO project follows the paradigm of model driven security architecture: High level business-oriented security requirements for inter-organizational workflows are translated into a configuration for a standards base...
متن کاملModel-Driven Security Engineering for Trust Management in SECTET
Service Oriented Architectures with underlying technologies like web services and web services orchestration have opened the door to a wide range of novel application scenarios, especially in the context of inter-organizational cooperation. One of the remaining obstacles for a widespread use of these techniques is security. Companies and organizations open their systems and core business proces...
متن کاملAgents and workflow engines for inter-organizational workflows in e-government cases
Purpose – The paper aims to propose a web-based “intermediation hybrid architecture” for a workflow management system that integrates services by exploiting and combining the advantages of strict centralized topologies that use workflow engines, with totally distributed systems which use agent technologies. Design/methodology/approach – The proposed operational and technical architectures defin...
متن کاملAdvancing a New Software Engineering Discipline
In this paper we present SECTET, a tool-based framework for the design, implementation and quality assurance of web service based applications. Main focus in SECTET is put on the design of inter-organizational workflows, the model driven realization of security aspects and testing of workflows. We present an overview of the model views, the design activities and the underlying architecture.
متن کاملDesign and Verification of Loosely Coupled Inter-Organizational Workflows with Multi-Level Security
Inter-Organizational Workflows (IOWF) become important as they provide solution for data sharing, heterogeneity in resources and work coordination at global level. However, a secured computing infrastructure like Multilevel Security (MLS) is needed to support today’s vast
متن کامل