摘要
在电子政务、电子商务等工作流应用环境中,任务执行者主要是组织机构中的人,访问控制系统的授权约束需求是工作流任务指派要考虑的重要问题,已提出的许多工作流授权模型主要讨论授权的实现过程,而较少涉及授权的约束或依赖关系。工作流任务指派必须与访问控制系统结合,为此提出工作流任务指派中授权约束的相关概念,讨论了满足授权约束的工作流任务指派实现算法及算法的复杂度,同时,给出在实际应用中各系统部署的示意图及授权约束验证系统主要接口的功能;最后,指出了该实现方法的优点及未来研究方向。
In workflow applications of e-government and e-commerce,the main performers of workflow tasks are users in an organization.Requirements of authorization constraints in access control system are important in task assignment of workflows.Many proposed workflow authorization models concentrate on realization of authorization whereas constraints or dependences of authorization are rarely referred.It is necessary to combine task assignment of workflow with access control system.First,concepts of authorization constraints in task assignment of workflow are proposed and the algorithm of how authorization constraints are satisfied in task assignment of workflow is introduced and its complexity is analyzed.Meanwhile,an illustration about the deployment of each systems and functions of the main interfaces of validation of authorization constraints are given.At last,the advantages of this implementation and some future works are pointed out.
出处
《计算机工程与应用》
CSCD
北大核心
2004年第36期25-27,97,共4页
Computer Engineering and Applications
基金
国家"十五"科技攻关计划(编号:2001BA105A1006)
关键词
工作流
任务指派
访问控制
授权
约束
workflow,task assignment,access control,authorization,constraint