WERBAC

Projects

	Methods & Standards Projects


	Supply Chain

Predictive & Optimization Systems

Artificial Intelligence

Systems Development

Business Intelligence & Data Mining

Cost Modeling & ABC

Logistics

Site Search

Community

FAQ

Contact

IDEF

Sales


Workflow-enhanced Role-based Authorization Control

Contracting Agency: National Institute of Standards and Technology (NIST), U.S. Department of Commerce
Point of Contact: solutions@kbsi.com

Overview

Role-Based Access Control (RBAC) is a relative new means of specifying access control to computer resources. It is different from traditional access control mechanisms in that users do not have discretionary access to enterprise objects. Access permissions are mandated to roles by the enterprise administration, and users are made members of roles. RBAC is a reference model; it does not include a standard for implementation. Currently, the RBAC framework is suitable to model access control for information objects such as files, directories, relational database objects, software objects and applications. However, the RBAC framework is extensible to include access control for process-centric concepts of an enterprise in addition to enterprise objects.

AIØ WIN® was HP3, Inc.'s choice for modeling and analyzing T-Mobile's cell site expansion project.

The focus of this effort is to extend the concepts of Role Based Access Control (RBAC) to tasks, processes, activities and functions of an enterprise. In other words, we take the subject-object approach of RBAC to a broader scope of specifying authorization to enterprise processes that use the objects. This effort will result in a framework, called Workflow-Enhanced Role-Based Authorization Control (WERBAC).

WERBAC is well suited for specifying access control in enterprise-wide information processes systems such as workflow systems, distributed processing, transaction management, and automated document management systems. Implementation of WERBAC in such systems will result in greater level of security, enabling easier granting, tracking and revoking of permissions.

In addition to this effort, we will prototype a WERBAC modeler that will be used to either enforce or validate a WERBAC model. The modeler will also guide us in fine-tuning the WERBAC framework and in discovering tighter workflow-access control mechanisms. Finally we intend for the WERBAC modeler to bridge to leading workflow management systems.

Additional information on RBAC can be found in the NIST WEB page on RBAC.

Knowledge Based Systems, Inc.
Corporate Headquarters: 1408 University Dr. East College Station, TX 77840
Phone:979.260.5274