计算机应用与软件
計算機應用與軟件
계산궤응용여연건
COMPUTER APPLICATIONS AND SOFTWARE
2014年
5期
14-16,135
,共4页
上超望%刘清堂%赵呈领%童名文
上超望%劉清堂%趙呈領%童名文
상초망%류청당%조정령%동명문
活动授权%组合Web服务%业务流程%访问控制
活動授權%組閤Web服務%業務流程%訪問控製
활동수권%조합Web복무%업무류정%방문공제
Activity authorization%Composite web services%Business process%Access control
业务流程访问控制机制是组合Web服务安全应用中的难点问题。针对现有研究不足,提出基于活动授权的Web服务业务流程动态访问控制模型AACBP(Activity Authorization Based Dynamic Access Control Model for BPEL4WS)。通过解除组织模型和业务流程模型间的耦合关系,AACBP将活动授权作为BPEL4WS(Business Process Expression Language for Web Services)活动访问控制实施的基本单元。依据活动实例动态感知上下文,AACBP细粒度约束活动访问授权,实现授权流与业务流程执行同步。最后给出AACBP模型在Web服务安全组合中的实施机制。
業務流程訪問控製機製是組閤Web服務安全應用中的難點問題。針對現有研究不足,提齣基于活動授權的Web服務業務流程動態訪問控製模型AACBP(Activity Authorization Based Dynamic Access Control Model for BPEL4WS)。通過解除組織模型和業務流程模型間的耦閤關繫,AACBP將活動授權作為BPEL4WS(Business Process Expression Language for Web Services)活動訪問控製實施的基本單元。依據活動實例動態感知上下文,AACBP細粒度約束活動訪問授權,實現授權流與業務流程執行同步。最後給齣AACBP模型在Web服務安全組閤中的實施機製。
업무류정방문공제궤제시조합Web복무안전응용중적난점문제。침대현유연구불족,제출기우활동수권적Web복무업무류정동태방문공제모형AACBP(Activity Authorization Based Dynamic Access Control Model for BPEL4WS)。통과해제조직모형화업무류정모형간적우합관계,AACBP장활동수권작위BPEL4WS(Business Process Expression Language for Web Services)활동방문공제실시적기본단원。의거활동실례동태감지상하문,AACBP세립도약속활동방문수권,실현수권류여업무류정집행동보。최후급출AACBP모형재Web복무안전조합중적실시궤제。
Business process access control mechanism is a difficult problem in composite web services security applications.Considering the deficiency in current researches,an Activity Authorization Based Dynamic Access Control Model for BPEL4WS (AACBP)is proposed.By dissolving the coupling relationship between the organization model and the business process model,AACBP utilizes activity authorization as the basic unit to implement BPEL4WS access control.Through the activity instances,the model implements fine-gained access control of the activities,and realizes the synchronization of authorization and business process execution.At last,the paper also describes the implementa-tion architecture of AACBP model in web services secure composition.
