Title :
A Policy Driven Authorization Control Framework for Business Collaboration
Author :
He, Daisy Daiqin ; Yang, Jian
Author_Institution :
Macquarie Univ., Sydney
Abstract :
Business collaboration is about coordinating the flow of information among organizations and linking their business processes. However unique and challenging security issues concerning business collaboration in the context of SOC have arisen because of its dynamic and loosely coupling nature. In this paper we firstly identify elements for security policy specification. We then discuss different types of collaboration patterns based on which rules for security policy integration can be developed. A framework is developed for handling authorization control for business collaboration. The discussion in the paper is based on the collaboration scenarios in health care.
Keywords :
Web services; authorisation; data privacy; formal specification; groupware; health care; software architecture; Web services; business collaboration pattern; data privacy; health care; policy driven authorization control framework; security policy specification; service-oriented computing architecture; Access control; Authorization; Collaboration; Helium; Information security; Insurance; Joining processes; Medical services; Radiology; Web services;
Conference_Titel :
Services, 2007 IEEE Congress on
Conference_Location :
Salt Lake City, UT
Print_ISBN :
978-0-7695-2926-4
DOI :
10.1109/SERVICES.2007.7
