| 摘要 |
A method and system to control an interaction of a plurality of participants in a workflow process. The method classifies the plurality of activities as (1) first activity of the workflow process, (2) first activity of a participant in an on-going workflow process, and (3) interaction activity. A set of access control policies is generated for each type of activity. The policies include workflow initialization policy, participation policy and interaction policies. The policies determine if a requesting participant is permitted to interact with a responding participant. In addition, the system includes a policy enforcement point for receiving a request from a requesting participant, wherein the request is for activating an activity of a responding participant. The policy enforcement point forwards the request to a policy decision point where the request is evaluated based on the set of access control policies. |
| 主权项 |
1. A method for controlling an interaction of a plurality of participants in a workflow process of a network system, the method comprising:
classifying each activity of a plurality of activities by a workflow server machine as one of a requesting activity, a responding activity, and an interaction activity, wherein each activity is associated with a participant from the plurality of participants in the workflow process, the plurality of participants being client machines operating as requesting participants or responding participants; generating a control policy for each of the participant of the plurality of participants according to the classification of the activity for that participant, wherein the generated control policy includes:
an interaction policy for routing an activity classified as the interaction activity of a participant, anda participant policy to identify conditions for execution of the activity of a participant,wherein routing of the activity is based on an identity of a requesting participant and an identity of a responding activity in accordance with permissible identities of requesting participants and responding activities indicated in the interaction policy, andwherein the conditions for execution of the activity is based on a role and trust level of the requesting participant in accordance with permissible roles and trust levels specified in the responding participant policy; receiving, via a network coupled to the workflow server machine and client machines, at a policy enforcement point of the responding participant, a request to interact from the requesting participant; forwarding via the network the request from the policy enforcement point to a policy decision point of the responding participant, wherein forwarding the request comprises:
determining the identity of the requesting participant, including a name of the requesting participant,determining the identity of the responding activity,verifying the identity of the requesting participant, andforwarding the request along with the verified identity of the requesting participant and the identity of the responding activity; evaluating the forwarded request at the policy decision point by applying the responding participant policy to determine whether the requesting participant is permitted to interact with the responding participant, wherein the requesting activity of the requesting participant precedes the responding activity of the responding participant in the workflow process, wherein evaluating the forwarded request comprises: permitting the forwarded request to be evaluated when the name of the requesting participant and the identity of the responding activity match a permissible name and a permissible identity indicated in the interaction policy; determining the role of the requesting participant; determining the trust level of the requesting participant, wherein the trust level is associated with a payment history and reputation of the requesting participant; and granting permission to activate the responding activity based on the:
role of the requesting participant,verified identity of the requesting participant, andtrust level of the requesting participant in accordance with the responding participant policy; and providing via the network the requesting participant with a decision to interact with the responding participant, including notifying the requesting participant about granting permission to activate the responding activity in accordance with the responding participant policy.
|
