Authorization and User Failure Resiliency for WS-BPEL Business Processes

  • Federica Paci
  • Rodolfo Ferrini
  • Yuqing Sun
  • Elisa Bertino
Part of the Lecture Notes in Computer Science book series (LNCS, volume 5364)


We investigate the problem of WS-BPEL processes resiliency in RBAC-WS-BPEL, an authorization model for WS-BPEL that supports the specification of authorizations for the execution of WS-BPEL process activities by roles and users and authorization constraints, such as separation and binding of duty. The goal of resiliency is to guarantee that even if some users becomes unavailable during the execution of a WS-BPEL process, the remaining users can still complete the execution of the process. We extend RBAC-WS-BPEL with a new type of constraints called resiliency constraints and the notion of user failure resiliency for WS-BPEL processes and propose an algorithm to determine if a WS-BPEL process is user failure resilient.


Business Process Access Control Model Authorization Model Role Base Access Control Role Hierarchy 
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.


  1. 1.
    Agrawal, A., et al.: WS-BPEL Extension for People (BPEL4People), Version 1.0 (2007),
  2. 2.
    Alves. A. et al.: Web Services Business Process Execution Language, Version 2.0, OASIS Standard (April 2007),
  3. 3.
    Anderson, A.: Core and Hierarchical Role Based Access Control (RBAC) Profile of XACML, Version 2.0, OASIS Standard (2005),
  4. 4.
  5. 5.
    Kostutanski, H., Massacci, F.: An Access Control Framework for Business Processes for Web Services. In: Proceedings of ACM Workshop on XML Security, George W. Johnson Center at George Mason University, Fairfax, Va, USA, October 2003, pp. 15–24 (2003)Google Scholar
  6. 6.
    Paci, F., Bertino, E., Crampton, J.: An Access Control Framework for WS-BPEL. International Journal of Web service Research 5(3), 20–43 (2008)CrossRefGoogle Scholar
  7. 7.
    Paci, F., Ferrini, R., Sun, Y., Bertino, E.: Authorization and User Failure Resiliency for WS-BPEL business processes, Cerias Technical report (2008)Google Scholar
  8. 8.
    Xiangpeng, Z., Cerone, A., Krishnan, P.: Verifying BPEL Workflows Under Authorisation Constraints. In: Dustdar, S., Fiadeiro, J.L., Sheth, A.P. (eds.) BPM 2006. LNCS, vol. 4102. Springer, Heidelberg (2006)CrossRefGoogle Scholar
  9. 9.
    Wang, Q., Li, N.: Satisfiability and Resiliency in Workflow Systems. In: Biskup, J., López, J. (eds.) ESORICS 2007. LNCS, vol. 4734, pp. 90–105. Springer, Heidelberg (2007)CrossRefGoogle Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2008

Authors and Affiliations

  • Federica Paci
    • 1
  • Rodolfo Ferrini
    • 2
  • Yuqing Sun
    • 3
  • Elisa Bertino
    • 1
  1. 1.Cerias and Computer Science DepartmentPurdue UniversityUSA
  2. 2.Department of Computer ScienceUniversity of BolognaItaly
  3. 3.School of Computer Science and Technology (SCST)Shandong UniversityChina

Personalised recommendations