Security-relevant semantic patterns of BPEL in cross-organisational business processes
Document Type
Conference Proceeding
Publisher
University of Plymouth
Faculty
Faculty of Computing, Health and Science
School
School of Computer and Information Science / Centre for Security Research
RAS ID
4035
Abstract
This paper presents results of the analysis of security-relevant semantics of business processes being defined by WS-BPEL (Web Services Business Process Execution Language, BPEL for short) scripts. In particular, security issues arising when such scripts defining cross-organisational business processes on top of Web services are deployed across security domain boundaries, give rise to this investigation. The analysis of security-relevant semantics of this scripting language will help to overcome these security issues making further exploitation of BPEL as a standard for defining cross-organisational business processes more acceptable. Semantic patterns being combinations of particular language features and Web services with specific access restrictions implied by security policies are defined and analysed for this purpose. Applications of the results of this analysis to distributed definition and execution of BPEL-defined business processes may be found in a previous paper of the authors.
Access Rights
free_to_read
Comments
Fischer, K. P., Bleimann, U., Fuhrmann, W., & Furnell, S. M. (2006, July). Security-Relevant Semantic Patterns of BPEL in Cross-Organisational Business Processes. In Proc. 6th International Network Conference, INC (pp. 203-212). Available here