As opposed to centralized workflow management systems, the distributed execution of workflows can not rely on a trusted centralized point of coordination. As a result, this flexible decentralized setting raises specific security requirements, such as the compliance of the overall sequence of operations with the pre-defined workflow execution plan, that are not yet met by existing decentralized workflow infrastructures. In this paper, we propose new security mechanisms capitalizing on onion encryption techniques and security policy models in order to assure the integrity of the distributed execution of workflows and to prevent workflow instance forging to name a few features. These mechanisms can easily be integrated into distributed workflow management systems as our design is strongly coupled with the runtime specification of decentralized workflows.
Enforcing integrity of execution in distributed workflow management systems
Research report RR-07-192, 5 April 2007
Type:
Report
Date:
2007-04-05
Department:
Digital Security
Eurecom Ref:
2208
Copyright:
© EURECOM. Personal use of this material is permitted. The definitive version of this paper was published in Research report RR-07-192, 5 April 2007 and is available at :
See also:
PERMALINK : https://www.eurecom.fr/publication/2208