Injecting Task Delegation Constraints into a Role-based Access Control Model

Khaled Gaaloul 1, 2 Erik Proper 2 François Charoy 1
1 SCORE - Services and Cooperation
Inria Nancy - Grand Est, LORIA - NSS - Department of Networks, Systems and Services
2 CRP Henri Tudor
CRP Henri Tudor - Centre de Recherche Public Henri Tudor [Headquarters]
Abstract : In role-based access control models, delegation of authorityinvolves delegating roles that a user can assume or the set of permissions that he can acquire, to other users. Several role-based delegation models have been proposed in the literature. However, these models consider only delegation in presence of the role type, which have some inherent limitations to task delegation in workflow systems. In this paper, we address task delegation in a workflow and elaborate a security model supporting delegation constraints. Delegation constraints express security requirements with regards to task's resources, user's assignment and privileges (delegation of authority). Further, we show how, using a role-based security model, we inject formalised delegation constraints to compute delegation principals with their respective privileges.
Complete list of metadatas

Cited literature [11 references]  Display  Hide  Download
Contributor : François Charoy <>
Submitted on : Wednesday, November 30, 2011 - 9:19:51 PM
Last modification on : Tuesday, December 18, 2018 - 4:26:02 PM
Long-term archiving on : Thursday, March 1, 2012 - 2:35:36 AM


Files produced by the author(s)


  • HAL Id : hal-00646869, version 1



Khaled Gaaloul, Erik Proper, François Charoy. Injecting Task Delegation Constraints into a Role-based Access Control Model. The first Workshop on Alignment of Business Process and Security Modelling (ABPSM'11), Sep 2011, Riga, Latvia. pp.219 - 224. ⟨hal-00646869⟩



Record views


Files downloads