{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,15]],"date-time":"2025-11-15T00:04:24Z","timestamp":1763165064923},"publisher-location":"Berlin, Heidelberg","reference-count":30,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783540751823"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"DOI":"10.1007\/978-3-540-75183-0_5","type":"book-chapter","created":{"date-parts":[[2007,8,31]],"date-time":"2007-08-31T04:36:32Z","timestamp":1188534992000},"page":"64-79","source":"Crossref","is-referenced-by-count":76,"title":["Modeling of Task-Based Authorization Constraints in BPMN"],"prefix":"10.1007","author":[{"given":"Christian","family":"Wolter","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andreas","family":"Schaad","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"5_CR1","series-title":"Lecture Notes in Computer Science","volume-title":"Advanced Information Systems Engineering","author":"N. Russell","year":"2005","unstructured":"Russell, N., van der Aalst, W.M.P., ter Hofstede, A.H.M., Edmond, D.: Workflow Resource Patterns: Identification, Representation and Tool Support. In: Pastor, \u00d3., Falc\u00e3o e Cunha, J. (eds.) CAiSE 2005. LNCS, vol.\u00a03520, Springer, Heidelberg (2005)"},{"key":"5_CR2","doi-asserted-by":"crossref","unstructured":"Wohed, P., van der Aalst, W.M.P., Dumas, M., ter Hofstede, A.H.M., Russell, N.: On the Suitability of BPMN for Business Process Modelling. In: Proceedings of the 4th International Conference on Business Process Management (BPM) (2006)","DOI":"10.1007\/11841760_12"},{"key":"5_CR3","doi-asserted-by":"crossref","unstructured":"Schaad, A., Lotz, V., Sohr, K.: A Model-checking Approach to Analysing Organisational Controls in a Loan Origination Process. In: SACMAT 2006: Proceedings of the eleventh ACM symposium on Access control models and technologies","DOI":"10.1145\/1133058.1133079"},{"key":"5_CR4","doi-asserted-by":"crossref","unstructured":"Saltzer, J.H., Schroeder, M.D.: The Protection of Information in Computer Systems. In: 4th ACM Symposium on Operating System Principles (1975)","DOI":"10.1109\/PROC.1975.9939"},{"key":"5_CR5","doi-asserted-by":"crossref","unstructured":"Clark, D., Wilson, D.: A Comparison of Commercial and Military Security Policies. In: IEEE Symposium on Security and Privacy (1987)","DOI":"10.1109\/SP.1987.10001"},{"key":"5_CR6","doi-asserted-by":"crossref","unstructured":"Nash, M., Poland, K.: Some Conundrums Concerning Separation of Duty. In: IEEE Symposium on Security and Privacy, Oakland, CA, pp. 201\u2013209 (1990)","DOI":"10.1109\/RISP.1990.63851"},{"key":"5_CR7","doi-asserted-by":"crossref","unstructured":"Botha, R.A., Eloff, J.H.P.: Separation of duties for access control enforcement in workflow environments (2001)","DOI":"10.1147\/sj.403.0666"},{"key":"5_CR8","unstructured":"Hoagland, J.A., Pandey, R., Levitt, K.N.: Security Policy Specification Using a Graphical Approach. Technical Report (1998)"},{"key":"5_CR9","unstructured":"Tan, K., Crampton, J., Gunter, C.: The consistency of task-based authorization constraints in workflow systems. In: CSFW 2004: Proceedings of the 17th IEEE workshop on Computer Security Foundations (2004)"},{"key":"5_CR10","doi-asserted-by":"crossref","unstructured":"Bertino, E., Crampton, J., Paci, F.: Access control and authorization constraints for WS-BPEL. In: Proceedings of IEEE International Conference on Web Services (2006)","DOI":"10.1109\/ICWS.2006.21"},{"key":"5_CR11","unstructured":"Kloppmann, M., Koenig, D., Leymann, F., Pfau, G., Rickayzen, A., von Riegen, C., Schmidt, P., Trickovic, I.: WS-BPEL Extension for People - BPEL4People (2005)"},{"key":"5_CR12","unstructured":"Object\u00a0Management Group: Business Process Modeling Notation Specification (2006), http:\/\/www.bpmn.org"},{"key":"5_CR13","unstructured":"Stephen, A.: White. Using BPMN to Model a BPEL Process. BPTrends (2005)"},{"key":"5_CR14","unstructured":"Recker, J., Mendling, J.: On the translation between bpmn and bpel: Conceptual mismatch between process modeling languages"},{"issue":"4","key":"5_CR15","doi-asserted-by":"publisher","first-page":"207","DOI":"10.1145\/382912.382913","volume":"3","author":"G. Ahn","year":"2000","unstructured":"Ahn, G., Sandhu, R.: Role-based authorization constraints specification. ACM Trans. Inf. Syst. Secur.\u00a03(4), 207\u2013226 (2000)","journal-title":"ACM Trans. Inf. Syst. Secur."},{"key":"5_CR16","doi-asserted-by":"crossref","unstructured":"Thomas, R.K., Sandhu, R.S.: Task-Based Authorization Controls (TBAC): A Family of Models for Active and Enterprise-Oriented Autorization Management. In: IFIP Workshop on Database Security, pp. 166\u2013181 (1997)","DOI":"10.1007\/978-0-387-35285-5_10"},{"key":"5_CR17","doi-asserted-by":"publisher","first-page":"65","DOI":"10.1145\/300830.300837","volume":"2","author":"E. Bertino","year":"1999","unstructured":"Bertino, E., Ferrari, E., Atluri, V.: The Specification and Enforcement of Authorization Constraints in Workflow Management Systems. ACM Transactions on Information and System Security\u00a02, 65\u2013104 (1999)","journal-title":"ACM Transactions on Information and System Security"},{"key":"5_CR18","doi-asserted-by":"crossref","unstructured":"Knorr, K., Stromer, H.: Modeling and Analyzing Separation of Duties in Workflow Environments. In: Sec 2001: Proceedings of the 16th international conference on Information security: Trusted information, pp. 199\u2013212 (2001)","DOI":"10.1007\/0-306-46998-7_14"},{"key":"5_CR19","unstructured":"Dobmeier, W., Pernuk, G.: Modellierung von Zugiffsrichtlinien f\u00fcr offene Systeme. In: Tagungsband Fachgruppentreffen Entwicklungsmethoden f\u00fcr Informationssysteme und deren Anwendung (EMISA 2006) (2006)"},{"key":"5_CR20","unstructured":"Kalnins, A., Vitolins, V.: Use of UML and Model Transformations for Workflow Process Definitions. TECHNIKA\u00a03 (2006)"},{"key":"5_CR21","doi-asserted-by":"crossref","unstructured":"J\u00fcrjens, J.: UMLsec: Extending UML for Secure Systems Development. In: UML 2002: Proceedings of the 5th International Conference on The Unified Modeling Language, pp. 412\u2013425 (2002)","DOI":"10.1007\/3-540-45800-X_32"},{"key":"5_CR22","doi-asserted-by":"crossref","unstructured":"Basin, D., Doser, J., Lodderstedt, T.: Model Driven Security for Process-Oriented Systems. In: SACMAT 2003: Proceedings of the eighth ACM symposium on Access control models and technologies, pp. 100\u2013109 (2003)","DOI":"10.1145\/775412.775425"},{"issue":"1","key":"5_CR23","doi-asserted-by":"publisher","first-page":"44","DOI":"10.1109\/MMUL.2003.1167921","volume":"10","author":"S.K. Chang","year":"2003","unstructured":"Chang, S.K., Polese, G., Cibelli, M., Thomas, R.: Visual Authorization Modeling in E-commerce Applications. IEEE MultiMedia\u00a010(1), 44\u201354 (2003)","journal-title":"IEEE MultiMedia"},{"key":"5_CR24","doi-asserted-by":"crossref","unstructured":"Huang, W.-K., Atluri, V.: SecureFlow: A Secure Web-enabled Work ow Management System. In: Proceedings of the fourth ACM workshop on Role-based access control (1999)","DOI":"10.1145\/319171.319179"},{"key":"5_CR25","unstructured":"Kostaki, P., Kokolakis, S., Pandolfo, C.: Serenity - System Engineering for Security & Dependability WP A2.D4.1 (2006), http:\/\/www.serenity-project.org"},{"key":"5_CR26","doi-asserted-by":"crossref","unstructured":"Iwaihara, M.: Access Control of XML Documents and Business Rule Processing for Advanced Information Exchange. In: Second International Conference on Informatics Research for Development of Knowledge Society Infrastructure (ICKS 2007), pp. 177\u2013184 (2007)","DOI":"10.1109\/ICKS.2007.2"},{"key":"5_CR27","unstructured":"Schaad, A.: An Extended Analysis of Delegating Obligations (2004)"},{"key":"5_CR28","unstructured":"Shapiro, R., Marin, R.N.M.: XML Process Definition Language Version 2.0. Workflow Management Coalition (2005)"},{"key":"5_CR29","volume-title":"MDA Explained: The Model Driven Architecture: Practice and Promise.","author":"A. Kleppe","year":"2003","unstructured":"Kleppe, A., Warmer, J., Bast, W.: MDA Explained: The Model Driven Architecture: Practice and Promise. Addison Wesley, Reading (2003)"},{"key":"5_CR30","unstructured":"Moses, T.: eXtensible Access Control Markup Language Version 2.0. OASIS Standard (2005)"}],"container-title":["Lecture Notes in Computer Science","Business Process Management"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-540-75183-0_5.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,4,27]],"date-time":"2021-04-27T10:54:27Z","timestamp":1619520867000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-540-75183-0_5"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[null]]},"ISBN":["9783540751823"],"references-count":30,"URL":"https:\/\/doi.org\/10.1007\/978-3-540-75183-0_5","relation":{},"subject":[]}}