W-RBAC - A workflow security model incorporating controlled overriding of constraints

Jacques Wainer, Paulo Barthelmess, Akhil Kumar

Research output: Contribution to journalArticlepeer-review

148 Scopus citations


This paper presents a pair of role-based access control models for workflow systems, collectively known as the W-RBAC models. The first of these models, W0-RBAC is based on a framework that couples a powerful RBAC-based permission service and a workflow component with clear separation of concerns for ease of administration of authorizations. The permission service is the focus of the work, providing an expressive logic-based language for the selection of users authorized to perform workflow tasks, with preference ranking. W1-RBAC extends the basic model by incorporating exception handling capabilities through controlled and systematic overriding of constraints.

Original languageEnglish (US)
Pages (from-to)455-485
Number of pages31
JournalInternational Journal of Cooperative Information Systems
Issue number4
StatePublished - Dec 2003

All Science Journal Classification (ASJC) codes

  • Information Systems
  • Computer Science Applications


Dive into the research topics of 'W-RBAC - A workflow security model incorporating controlled overriding of constraints'. Together they form a unique fingerprint.

Cite this