关键词: 基于任务的访问控制 分布式工作流 任务层次分解

Abstract:

One of the most challenging problems in large distributed workflow management systems is the complexity of security administration. The TBAC （task-ba sed access control） shows powerful capability in dynamic access control by being integrated with workflow transaction processing, and manages the permi  issions dynamically according to the tasks and the task status of workflow. This paper integrates the role-based authorization with the task-based acces s control by analyzing the principle of task-based access control, and a task level partitioning method is introduced to present the global workflow schema. In addition, decentralization management policies are applied to establish the access control of distributed workflow, and the realization of this model is expatiated as well.

Key words: （task-based access control, distributed workflow, task level partitioning）