Access Control for Monitoring System-Spanning Business Processes

S. Bassil, M.U. Reichert, R. Bobrik, Th. Bauer

    Research output: Book/ReportReportProfessional

    16 Downloads (Pure)

    Abstract

    Integrated process support is highly desirable in environ- ments where data related to a particular (business) process are scattered over distributed and heterogeneous information systems (IS). A process monitoring component is a much-needed module in order to provide an integrated view on all these process data. Regarding process data integration, access control (AC) issues are very important but also quite complex to be addressed. A major problem arises from the fact that the involved IS are usually based on heterogeneous AC components. For several reasons, the only feasible way to tackle the problem of AC at the process monitoring level is to define access rights for the process monitoring component, hence getting rid of the burden to map access rights from the IS level. In this paper, we propose a set of requirements for AC in process monitoring, which we derived from our case studies in the automotive domain. We then present alternative approaches for AC: the view-based approach and the object-based approach. The latter is retained, and a core AC model is proposed for the definition of access rights that meet the derived requirements. AC mechanisms provided within the core model are key ingredients for the definition of model extensions.
    Original languageUndefined
    Place of PublicationEnschede
    PublisherCentre for Telematics and Information Technology (CTIT)
    Number of pages15
    Publication statusPublished - 8 Mar 2007

    Publication series

    NameCTIT Technical Report Series
    PublisherCentre for Telematics and Information Technology, University of Twente
    No.2/TR-CTIT-07-20
    ISSN (Print)1381-3625

    Keywords

    • EWI-9543
    • IR-67021
    • SCS-Services
    • METIS-241547

    Cite this

    Bassil, S., Reichert, M. U., Bobrik, R., & Bauer, T. (2007). Access Control for Monitoring System-Spanning Business Processes. (CTIT Technical Report Series; No. 2/TR-CTIT-07-20). Enschede: Centre for Telematics and Information Technology (CTIT).
    Bassil, S. ; Reichert, M.U. ; Bobrik, R. ; Bauer, Th. / Access Control for Monitoring System-Spanning Business Processes. Enschede : Centre for Telematics and Information Technology (CTIT), 2007. 15 p. (CTIT Technical Report Series; 2/TR-CTIT-07-20).
    @book{b6378cc8989b4641b63bc49b5f6de930,
    title = "Access Control for Monitoring System-Spanning Business Processes",
    abstract = "Integrated process support is highly desirable in environ- ments where data related to a particular (business) process are scattered over distributed and heterogeneous information systems (IS). A process monitoring component is a much-needed module in order to provide an integrated view on all these process data. Regarding process data integration, access control (AC) issues are very important but also quite complex to be addressed. A major problem arises from the fact that the involved IS are usually based on heterogeneous AC components. For several reasons, the only feasible way to tackle the problem of AC at the process monitoring level is to define access rights for the process monitoring component, hence getting rid of the burden to map access rights from the IS level. In this paper, we propose a set of requirements for AC in process monitoring, which we derived from our case studies in the automotive domain. We then present alternative approaches for AC: the view-based approach and the object-based approach. The latter is retained, and a core AC model is proposed for the definition of access rights that meet the derived requirements. AC mechanisms provided within the core model are key ingredients for the definition of model extensions.",
    keywords = "EWI-9543, IR-67021, SCS-Services, METIS-241547",
    author = "S. Bassil and M.U. Reichert and R. Bobrik and Th. Bauer",
    year = "2007",
    month = "3",
    day = "8",
    language = "Undefined",
    series = "CTIT Technical Report Series",
    publisher = "Centre for Telematics and Information Technology (CTIT)",
    number = "2/TR-CTIT-07-20",
    address = "Netherlands",

    }

    Bassil, S, Reichert, MU, Bobrik, R & Bauer, T 2007, Access Control for Monitoring System-Spanning Business Processes. CTIT Technical Report Series, no. 2/TR-CTIT-07-20, Centre for Telematics and Information Technology (CTIT), Enschede.

    Access Control for Monitoring System-Spanning Business Processes. / Bassil, S.; Reichert, M.U.; Bobrik, R.; Bauer, Th.

    Enschede : Centre for Telematics and Information Technology (CTIT), 2007. 15 p. (CTIT Technical Report Series; No. 2/TR-CTIT-07-20).

    Research output: Book/ReportReportProfessional

    TY - BOOK

    T1 - Access Control for Monitoring System-Spanning Business Processes

    AU - Bassil, S.

    AU - Reichert, M.U.

    AU - Bobrik, R.

    AU - Bauer, Th.

    PY - 2007/3/8

    Y1 - 2007/3/8

    N2 - Integrated process support is highly desirable in environ- ments where data related to a particular (business) process are scattered over distributed and heterogeneous information systems (IS). A process monitoring component is a much-needed module in order to provide an integrated view on all these process data. Regarding process data integration, access control (AC) issues are very important but also quite complex to be addressed. A major problem arises from the fact that the involved IS are usually based on heterogeneous AC components. For several reasons, the only feasible way to tackle the problem of AC at the process monitoring level is to define access rights for the process monitoring component, hence getting rid of the burden to map access rights from the IS level. In this paper, we propose a set of requirements for AC in process monitoring, which we derived from our case studies in the automotive domain. We then present alternative approaches for AC: the view-based approach and the object-based approach. The latter is retained, and a core AC model is proposed for the definition of access rights that meet the derived requirements. AC mechanisms provided within the core model are key ingredients for the definition of model extensions.

    AB - Integrated process support is highly desirable in environ- ments where data related to a particular (business) process are scattered over distributed and heterogeneous information systems (IS). A process monitoring component is a much-needed module in order to provide an integrated view on all these process data. Regarding process data integration, access control (AC) issues are very important but also quite complex to be addressed. A major problem arises from the fact that the involved IS are usually based on heterogeneous AC components. For several reasons, the only feasible way to tackle the problem of AC at the process monitoring level is to define access rights for the process monitoring component, hence getting rid of the burden to map access rights from the IS level. In this paper, we propose a set of requirements for AC in process monitoring, which we derived from our case studies in the automotive domain. We then present alternative approaches for AC: the view-based approach and the object-based approach. The latter is retained, and a core AC model is proposed for the definition of access rights that meet the derived requirements. AC mechanisms provided within the core model are key ingredients for the definition of model extensions.

    KW - EWI-9543

    KW - IR-67021

    KW - SCS-Services

    KW - METIS-241547

    M3 - Report

    T3 - CTIT Technical Report Series

    BT - Access Control for Monitoring System-Spanning Business Processes

    PB - Centre for Telematics and Information Technology (CTIT)

    CY - Enschede

    ER -

    Bassil S, Reichert MU, Bobrik R, Bauer T. Access Control for Monitoring System-Spanning Business Processes. Enschede: Centre for Telematics and Information Technology (CTIT), 2007. 15 p. (CTIT Technical Report Series; 2/TR-CTIT-07-20).