Title

Security-relevant semantic patterns of BPEL in cross-organisational business processes

Document Type

Conference Proceeding

Publisher

University of Plymouth

Faculty

Computing, Health and Science

School

Computer and Information Science, Centre for Security Research

RAS ID

4035

Comments

Originally published as: Fischer, K. P., Bleimann, U., Fuhrmann, W., & Furnell, S. M. (2006, July). Security-Relevant Semantic Patterns of BPEL in Cross-Organisational Business Processes. In Proc. 6th International Network Conference, INC (pp. 203-212). Original article available here

Abstract

This paper presents results of the analysis of security-relevant semantics of business processes being defined by WS-BPEL (Web Services Business Process Execution Language, BPEL for short) scripts. In particular, security issues arising when such scripts defining cross-organisational business processes on top of Web services are deployed across security domain boundaries, give rise to this investigation. The analysis of security-relevant semantics of this scripting language will help to overcome these security issues making further exploitation of BPEL as a standard for defining cross-organisational business processes more acceptable. Semantic patterns being combinations of particular language features and Web services with specific access restrictions implied by security policies are defined and analysed for this purpose. Applications of the results of this analysis to distributed definition and execution of BPEL-defined business processes may be found in a previous paper of the authors.

Access Rights

free_to_read

 
COinS