A WORKFLOW MODEL TO SUPPORT LOCATION BASED PARTICIPATION TO POLICY MAKING PROCESSES

This paper aims to propose PMWF model, a new workflow model to automate ubiquitous policy making processes and facilitate citizen participation. While workflow technology has been widely adopted in public sector, the use of technology is mostly limited to supporting back-end administrative business processes. PMWF model targets front-end policy making processes that require active participation of large number of citizens. Automatic delivery of relevant policy issues into citizen’s life is expected to enhance their participation in policy formulation and implementation processes. PMWF model provides modelling constructs to link back-end admin tasks by policy makers to front-end opinion tasks whose main actors are citizens. The core constructs for linkage is opinion-tag which contains policy issues and is attached to geographical objects so that citizens can identify relevant policy issues in the middle of their every-day life patterns. The proposed model is applied to real world policy making processes in the UK and Turkey to show its generality

On the satisfiability of constraints in workflow systems

Separation of duty and binding of duty in workflow systems is an important area of current research in computer security. We introduce a formal model for constrained workflow systems that incorporate constraints for implementing such policies. We define an entailment constraint, which is defined on a pair of tasks in a work flow, and show that such constraints can be used to model many familiar authorization policies. We show that a set of entailment constraints can be manipulated algebraically in order to compute all possible dependencies between tasks in the workflow. The resulting set of constraints form the basis for an analysis of the satisfiability of a workflow. We briefly consider how this analysis can be used to implement a reference monitor for workflow systems

Semantic Information Assurance for Secure Distributed Knowledge Management: A Business Process Perspective

Secure knowledge management for eBusiness processes that span multiple organizations requires intraorganizational and interorganizational perspectives on security and access control issues. There is paucity in research on information assurance of distributed interorganizational eBusiness processes from a business process perspective. This paper presents a framework for secure semantic eBusiness processes integrating three streams of research, namely: 1) eBusiness processes; 2) information assurance; and 3) semantic technology. This paper presents the conceptualization and analysis of a secure semantic eBusiness process framework and architecture, and provides a holistic view of a secure interorganizational semantic eBusiness process. This paper fills a gap in the existing literature by extending role-based access control models for eBusiness processes that are done by using ontological analysis and semantic Web technologies to develop a framework for computationally feasible secure eBusiness process knowledge representations. An integrated secure eBusiness process approach is needed to provide a unifying conceptual framework to understand the issues surrounding access control over distributed information and knowledge resources

Combined Fine-grained and Role-based Access Control Mechanism

Different access control methods have been proposed to ensure data security in a computer system. Approaches to access control include role-based access control and fine-grained access control. However these systems suffer from complexity or inadequate security. Although the role-based access control is efficient in terms of the overheads related to security it is not as secure as fine-grained access control. On the other hand fine-grained access control is secure, but very inefficient for storing access information. To solve this problem, we propose a combined fine grained-role based access control system. A graph representation is used to capture the combined model. Furthermore, in this thesis we propose a combined system which caters for the following: - System with one user and one role - System with one user and multiple roles - System with multiple users and one role - System with multiple users and multiple roles. Formal Graph Merging operations for the above four scenarios have been defined. The merging operation merges a graph representing the fine-grained system with a graph representing the role based system to generate a new graph model of the combined role-based fine-grained system. The combined system introduces the new rules for access control based on the above four categories. Simulation results show that the combined system has the efficiency of the role-based access control and at the same time, the security of the fine-grained control system. . A formal grammar in introduced to capture the access control for the combined system. Future works will involve implementing the proposed system in a real world environment.Computer Science Departmen

Injecting RBAC to Secure a Web-based Workflow System

Web-based workflow systems have recently received much attention because they can support dynamic business processes over heterogeneous computing systems. Most existing web-based workflow systems, however, provide minimal security services such as authentication of users and network security. In this paper we describes an experiment in injecting role-based access control (RBAC) into an existing web-based workflow system. Specifically, we ensure that each task can only be executed by users belonging to a specific role. In order to achieve this, we define a simplified RBAC model to meet our needs and describe the security architecture to be applied to an existing web-based workflow system. We describe our implementation using commercial off-the-shelf (COTS) technology to demonstrate the feasibility of this approach. Our implementation uses X.509v3 certificates with role attribute, and employs a user-pull style where the client requests a client certificate from the role-server and presen..

Towards Collaborative Scientific Workflow Management System

The big data explosion phenomenon has impacted several domains, starting from research areas to divergent of business models in recent years. As this intensive amount of data opens up the possibilities of several interesting knowledge discoveries, over the past few years divergent of research domains have undergone the shift of trend towards analyzing those massive amount data. Scientific Workflow Management System (SWfMS) has gained much popularity in recent years in accelerating those data-intensive analyses, visualization, and discoveries of important information. Data-intensive tasks are often significantly time-consuming and complex in nature and hence SWfMSs are designed to efficiently support the specification, modification, execution, failure handling, and monitoring of the tasks in a scientific workflow. As far as the complexity, dimension, and volume of data are concerned, their effective analysis or management often become challenging for an individual and requires collaboration of multiple scientists instead. Hence, the notion of 'Collaborative SWfMS' was coined - which gained significant interest among researchers in recent years as none of the existing SWfMSs directly support real-time collaboration among scientists. In terms of collaborative SWfMSs, consistency management in the face of conflicting concurrent operations of the collaborators is a major challenge for its highly interconnected document structure among the computational modules - where any minor change in a part of the workflow can highly impact the other part of the collaborative workflow for the datalink relation among them. In addition to the consistency management, studies show several other challenges that need to be addressed towards a successful design of collaborative SWfMSs, such as sub-workflow composition and execution by different sub-groups, relationship between scientific workflows and collaboration models, sub-workflow monitoring, seamless integration and access control of the workflow components among collaborators and so on. In this thesis, we propose a locking scheme to facilitate consistency management in collaborative SWfMSs. The proposed method works by locking workflow components at a granular attribute level in addition to supporting locks on a targeted part of the collaborative workflow. We conducted several experiments to analyze the performance of the proposed method in comparison to related existing methods. Our studies show that the proposed method can reduce the average waiting time of a collaborator by up to 36% while increasing the average workflow update rate by up to 15% in comparison to existing descendent modular level locking techniques for collaborative SWfMSs. We also propose a role-based access control technique for the management of collaborative SWfMSs. We leverage the Collaborative Interactive Application Methodology (CIAM) for the investigation of role-based access control in the context of collaborative SWfMSs. We present our proposed method with a use-case of Plant Phenotyping and Genotyping research domain. Recent study shows that the collaborative SWfMSs often different sets of opportunities and challenges. From our investigations on existing research works towards collaborative SWfMSs and findings of our prior two studies, we propose an architecture of collaborative SWfMSs. We propose - SciWorCS - a Collaborative Scientific Workflow Management System as a proof of concept of the proposed architecture; which is the first of its kind to the best of our knowledge. We present several real-world use-cases of scientific workflows using SciWorCS. Finally, we conduct several user studies using SciWorCS comprising different real-world scientific workflows (i.e., from myExperiment) to understand the user behavior and styles of work in the context of collaborative SWfMSs. In addition to evaluating SciWorCS, the user studies reveal several interesting facts which can significantly contribute in the research domain, as none of the existing methods considered such empirical studies, and rather relied only on computer generated simulated studies for evaluation

An analytical framework for workflow technology adoption in local government authorities

This thesis was submitted for the degree of Doctor of Philosophy and awarded by Brunel University.The focus of the study is to develop a novel framework of workflow technology adoption (WAF) for public policy making. Workflow technology (WfT) has emerged to support both technological and economic importance for private and public organisations to meet competitive business and computational environment. Despite all the benefits of WfT, there has been limited adoption by policy makers. One of the reasons for this is the lack of a theoretical framework for researchers and a tool for decision makers that help in evaluating WfT adoption. Due to the limited knowledge on workflow adoption, from the socio-technical and organisational side, an academic challenge is to identify the key factors that influence adoption. To overcome these limitations, the proposed workflow adoption framework is based on the amalgamation of Technology, Organisation, Environment and Task Technology Fit theories that is evaluated and extended by using a qualitative multiple case study approach. Qualitative content analysis of the empirical data collected from three UK local government authorities resulted in a novel framework for WfT adoption, particularly for the policy making context, that has 17 factors, which influence adoption decisions. Findings revealed that attitude, organisation structure and competition did not have any influential role due to immense managerial support, constructive communication and thorough training provided to employees. Also, competition as an environmental factor had no influence over the adoption of WfT, since public services do not compete like in the private sector over market share, instead imitative pressure emerged due to close collaboration with neighbouring LGAs. It was also found that stakeholders and timescale had influence on the decisions and collection proved to be an important task characteristic of the LGAs. The major contribution of the framework is that it provides an understanding of the phenomenon by identifying key factors from the contextual perspective (i) technological set (complexity, relative advantage, compatibility and timescale), (ii) organisational set (managerial support, cost, information intensity and stakeholders), (iii) environmental set (government regulations and imitative pressure). In addition, it identifies functional fit of WfT with the task requirements by classifying functions (communication, information processing and process structuring) and policy making task characteristics (generation, choice, collection and combination) and then analysing the fit. Together it provides a holistic understanding of the phenomenon that aids informed decision making relevant to WfT adoption. Although, the literature has emphasised the technical aspects so far, this study contributes to future studies through organisational and managerial knowledge, classifying WfT’s functions and policy making task characteristics. Practical implications exist for the policy makers who can adopt the WAF as a recommendation tool to make informed decisions and achieve competitive advantage. Keywords: Workflow technology, IT adoption, decision making, policy making process and e-government

An Integrated, Secured, Open-Source Medical Prototype for Collaborative Patient Management on the Internet

Conventional approaches to building critical and secured systems are based on the use of commercial tools for development and maintenance. Changes in the marketplace and the acceptance of the open-source model have brought this assumption into question. The combination of open-source\u27s rapid rise and the introduction of pervasive computing has made the computing industry more receptive to open-source tools and products. The open-source model allows systems to be controlled by a single individual or a small developer group that reduces dependence on individual experts. The availability of free system source codes, an expanding commercial support market, and increasing global collaborative projects makes open-source an important development in the computing environment and an exciting innovation in software engineering. Open-source projects require a level of modeling to successfully implement a solution. This study implemented a Web application prototype that models medical business logic and state that is secured. The researcher adopted the object-oriented design methodology and prototyping that improved security and lowered overall development cost. The open-source community had played an increasingly significant role in the business plans of established computing companies, in university research labs, and in the development of new companies focused on open-source support and integration issues. The openness of the Internet presents both system development and privacy issues. The availability of free tools and instructions on how to compromise systems is alarming within the online community. Thus, open-source security tools are helping protect people\u27s privacy by enforcing authentication, confidentiality, and information integrity to prevent unauthorized access. Open-source growth motivated this research to develop a medical prototype for online collaboration. Open-source tools including PHP, MySQL, Apache Web Server, and the Linux operating system were used to develop the secured application through prototyping. The main contribution of this study is that it demonstrated the exclusive use of open-source software and tools for an online application. The researcher hypothesized that open-source tools like PHP, MySQL, XML, and LINUX are the answer to building dynamic multi-tiers and cost effective systems faster. The research also explored major tools available for open-source software development