Access control decisions are often based on the roles individual users take on as part of an organization. A role describes a set of transactions that a user or set of users can perform within the context of an organization. RBAC provide a means of naming and describing relationships between individuals and rights, providing a method of meeting the secure processing needs of many commercial and civilian government organizations (Ferraiolo et al., 1999).
Published in Chapter:
Modeling Process-Driven SOAs: A View-Based Approach
Huy Tran (Vienna University of Technology, Austria), Ta’id Holmes (Vienna University of Technology, Austria), Uwe Zdun (Vienna University of Technology, Austria), and Schahram Dustdar (Vienna University of Technology, Austria)
Copyright: © 2009
|Pages: 22
DOI: 10.4018/978-1-60566-288-6.ch002
Abstract
This chapter introduces a view-based, model-driven approach for process-driven, service-oriented architectures. A typical business process consists of numerous tangled concerns, such as the process control flow, service invocations, fault handling, transactions, and so on. Our view-based approach separates these concerns into a number of tailored perspectives at different abstraction levels. On the one hand, the separation of process concerns helps reducing the complexity of process development by breaking a business process into appropriate architectural views. On the other hand, the separation of levels of abstraction offers appropriately adapted views to stakeholders, and therefore, helps quickly re-act to changes at the business level and at the technical level as well. Our approach is realized as a model-driven tool-chain for business process development.