Access control is an important aspect of regulatory compliance. Therefore, access control specifications must be process-aware in that they can refer to an underlying business process context, but do not specify when and how they must be enforced. Such access control specifications are often expressed in terms of general rules and exceptions,
akin to defeasible logic. In this paper we demonstrate how a role-based, process-aware access control policy can be specified in the SBVR.
Specifying Process-Aware Access Control Rules in SBVR
http://www.econ.kuleuven.ac.be –
Search
Login
Who's new
- NorikoCapilla
- stephanie
- lolamiller
- benjaminhiatt
- hasenchat
Who's online
There are currently 0 users and 3 guests online.
Syndicate
You are logged in as
Anonymous
Categories
- All
- Business Rules in Enterprise Architecture
- Business Rules in Business Process Management
- Business Rules in Workflow Management
- Business Rules Conferences & Symposiums
- Business Process Management
- Event Driven Architecture
- Business Rules Standards
- Rule Engine
- Business Rules News
- SBVR
- Business Rules Design & Architecture
- Business Rules Design Patterns
- Business Rules General
- Business Rules Performance
- BRMS
- Business Rules Whitepapers
- Rule Markup Languages
- Model Driven Architecture & Engineering
- Business Intelligence
- Model Transformations
- Rule Based Frameworks
- Knowledge Engineering
- Semantic Web
- Business Rule Validation
- Business Rule Verification
- Business IT Gap