IT im Unternehmen

Information Flow Based Security Control Beyond RBAC

How to enable fine-grained security policy enforcement in business processes beyond limitations of role-based access control (RBAC)

Authors: Fischer-Hellmann, Klaus-Peter

Editors: Bischoff, Rainer (Ed.)

  • Comprehensible for experts in the field as well as other readers
  • Providing modern methods of information flow control
  • Easy-to-apply and proven methods
see more benefits

Buy this book

eBook $54.99
price for USA (gross)
  • ISBN 978-3-8348-2618-3
  • Digitally watermarked, DRM-free
  • Included format: PDF
  • ebooks can be used on all reading devices
  • Immediate eBook download after purchase
Softcover $69.99
price for USA
  • ISBN 978-3-8348-2617-6
  • Free shipping for individuals worldwide
  • Usually dispatched within 3 to 5 business days.
About this book

Role-based access control (RBAC) is a widely used technology to control information flows as well as control flows within and between applications in compliance with restrictions implied by security policies, in particular, to prevent disclosure of information or access to resources beyond restrictions defined by those security policies. Since RBAC only provides the alternatives of either granting or denying access, more fine-grained control of information flows such as “granting access to information provided that it will not be disclosed to targets outside our organisation during further processing” is not possible. In business processes, in particular those spanning several organisations, which are commonly defined using business process execution language (BPEL), useful information flows not violating security policy-implied limitations would be prevented if only the access control capabilities offered by RBAC are in use. The book shows a way of providing more refined methods of information flow control that allow for granting access to information or resources by taking in consideration the former or further information flow in a business process requesting this access. The methods proposed are comparatively easy to apply and have been proven to be largely machine-executable by a prototypical realisation. As an addition, the methods are extended to be also applicable to BPEL-defined workflows that make use of Grid services or Cloud services. IT Security Specialists Chief Information Officers (CIOs) Chief Security Officers (CSOs) Security Policy and Quality Assurance Officers and Managers Business Process and Web/Grid/Cloud Service Designers, Developers, Operational Managers Interested Learners / Students in the Field of Security Management.

About the authors

Klaus-Peter Fischer-Hellmann has received his PhD in Computer Science from the University of Plymouth (UK) and holds an MSc in Mathematics from the University of Heidelberg. His expertise is based on more than 30 years of experience in the field of distributed applications, particularly in telecommunications. For several years now, he has been actively involved in teaching and supervising post-graduate research students at PhD level.

Table of contents (11 chapters)

  • Introduction

    Fischer-Hellmann, Klaus-Peter

    Pages 1-6

  • Cross-Organisational Deployment of Business Processes

    Fischer-Hellmann, Klaus-Peter

    Pages 7-18

  • Approaches to Specification and Enforcement of Security Policies

    Fischer-Hellmann, Klaus-Peter

    Pages 19-38

  • Analysis of Security-Relevant Semantics of BPEL

    Fischer-Hellmann, Klaus-Peter

    Pages 39-65

  • Specification of Security Policy for Compliance Assessment of CBPs

    Fischer-Hellmann, Klaus-Peter

    Pages 67-80

Buy this book

eBook $54.99
price for USA (gross)
  • ISBN 978-3-8348-2618-3
  • Digitally watermarked, DRM-free
  • Included format: PDF
  • ebooks can be used on all reading devices
  • Immediate eBook download after purchase
Softcover $69.99
price for USA
  • ISBN 978-3-8348-2617-6
  • Free shipping for individuals worldwide
  • Usually dispatched within 3 to 5 business days.
Loading...

Recommended for you

Loading...

Bibliographic Information

Bibliographic Information
Book Title
Information Flow Based Security Control Beyond RBAC
Book Subtitle
How to enable fine-grained security policy enforcement in business processes beyond limitations of role-based access control (RBAC)
Authors
Editors
  • Rainer Bischoff
Series Title
IT im Unternehmen
Series Volume
1
Copyright
2012
Publisher
Springer Vieweg
Copyright Holder
Vieweg+Teubner Verlag | Springer Fachmedien Wiesbaden
eBook ISBN
978-3-8348-2618-3
DOI
10.1007/978-3-8348-2618-3
Softcover ISBN
978-3-8348-2617-6
Edition Number
1
Number of Pages
XXI, 161
Number of Illustrations and Tables
25 b/w illustrations
Topics